fix(gateways): add explicit group: "" to all certificateRefs entries
The Gateway API admission server defaults certificateRefs[].group to "" when it is omitted. ArgoCD diffed the desired state (no group field) against the live state (group: "") and flagged every gateway as out of sync. Fix: explicitly set group: "" in all certificateRefs entries so the rendered manifest matches the API server's canonical form exactly. Affected: artifactapi, cattle-system, consul, litellm, paperclip, puppet (puppetboard + puppetdb), vault.
This commit is contained in:
@@ -31,6 +31,7 @@ spec:
|
||||
protocol: HTTPS
|
||||
tls:
|
||||
certificateRefs:
|
||||
- kind: Secret
|
||||
- group: ""
|
||||
kind: Secret
|
||||
name: artifactapi-tls
|
||||
mode: Terminate
|
||||
|
||||
@@ -31,6 +31,7 @@ spec:
|
||||
protocol: HTTPS
|
||||
tls:
|
||||
certificateRefs:
|
||||
- kind: Secret
|
||||
- group: ""
|
||||
kind: Secret
|
||||
name: rancher-tls
|
||||
mode: Terminate
|
||||
|
||||
@@ -35,7 +35,8 @@ spec:
|
||||
tls:
|
||||
mode: Terminate
|
||||
certificateRefs:
|
||||
- kind: Secret
|
||||
- group: ""
|
||||
kind: Secret
|
||||
name: consul-tls
|
||||
- name: consul-svc
|
||||
port: 443
|
||||
@@ -47,5 +48,6 @@ spec:
|
||||
tls:
|
||||
mode: Terminate
|
||||
certificateRefs:
|
||||
- kind: Secret
|
||||
- group: ""
|
||||
kind: Secret
|
||||
name: consul-tls
|
||||
|
||||
@@ -31,6 +31,7 @@ spec:
|
||||
protocol: HTTPS
|
||||
tls:
|
||||
certificateRefs:
|
||||
- kind: Secret
|
||||
- group: ""
|
||||
kind: Secret
|
||||
name: litellm-tls
|
||||
mode: Terminate
|
||||
|
||||
@@ -31,6 +31,7 @@ spec:
|
||||
protocol: HTTPS
|
||||
tls:
|
||||
certificateRefs:
|
||||
- kind: Secret
|
||||
- group: ""
|
||||
kind: Secret
|
||||
name: paperclip-tls
|
||||
mode: Terminate
|
||||
|
||||
@@ -35,6 +35,7 @@ spec:
|
||||
protocol: HTTPS
|
||||
tls:
|
||||
certificateRefs:
|
||||
- kind: Secret
|
||||
- group: ""
|
||||
kind: Secret
|
||||
name: puppetboard-tls
|
||||
mode: Terminate
|
||||
|
||||
@@ -28,6 +28,7 @@ spec:
|
||||
protocol: HTTPS
|
||||
tls:
|
||||
certificateRefs:
|
||||
- kind: Secret
|
||||
- group: ""
|
||||
kind: Secret
|
||||
name: puppetdb-tls
|
||||
mode: Terminate
|
||||
|
||||
@@ -35,7 +35,8 @@ spec:
|
||||
tls:
|
||||
mode: Terminate
|
||||
certificateRefs:
|
||||
- kind: Secret
|
||||
- group: ""
|
||||
kind: Secret
|
||||
name: vault-tls
|
||||
- name: vault-direct
|
||||
port: 8200
|
||||
@@ -46,5 +47,6 @@ spec:
|
||||
tls:
|
||||
mode: Terminate
|
||||
certificateRefs:
|
||||
- kind: Secret
|
||||
- group: ""
|
||||
kind: Secret
|
||||
name: vault-tls
|
||||
|
||||
Reference in New Issue
Block a user