Wrong url has been occurred while running terraform apply.

Question

Wrong url has been occurred while running terraform apply.

codal-jayesh opened this issue 2 years ago · comments

╷
│ Error: failed to create kubernetes rest client for read of resource: Get "https://localhost/api?timeout=32s": x509: certificate is valid for *.dev.tappy.stage-codal.net, dev.tappy.stage-codal.net, not localhost
│
│ with module.cert_manager.kubectl_manifest.cluster_issuer[0],
│ on .terraform/modules/cert_manager/main.tf line 42, in resource "kubectl_manifest" "cluster_issuer":
│ 42: resource "kubectl_manifest" "cluster_issuer" {
│

Working fine in local machine where kubectl, helm, kubectl config and providers are configured.

Not working in jenkins server where only kubectl command is installed.

Bohdan Tverdyi · Answer 1 · Mon Aug 08 2022 19:44:29 GMT+0800 (China Standard Time)

Hello, terraform providers settings are incorrect

codal-jayesh · Answer 2 · Mon Aug 08 2022 19:58:39 GMT+0800 (China Standard Time)

Hello, terraform providers settings are incorrect

Kubernetes and helm resources through terraform are being created.

Just this one throws error

Bohdan Tverdyi · Answer 3 · Mon Aug 08 2022 20:04:36 GMT+0800 (China Standard Time)

What about kubectl provider ?

Bohdan Tverdyi · Answer 4 · Mon Aug 08 2022 20:04:49 GMT+0800 (China Standard Time)

https://github.com/terraform-iaac/terraform-kubernetes-cert-manager#you-should-to-add-into-your-terraform-kubectl--helm--provider-configuration

codal-jayesh · Answer 5 · Mon Aug 08 2022 20:18:27 GMT+0800 (China Standard Time)

jenkins@ip-172-31-11-15:~/workspace/Dev-Terraform-Deployment/infra/terraform-resources/configs$ cat kubernetes.tf | head -n25
provider "helm" {
kubernetes {
host = module.eks.cluster_endpoint
cluster_ca_certificate = base64decode(module.eks.cluster_certificate_authority_data)
token = data.aws_eks_cluster_auth.eks_cluster.token
}
experiments {
manifest = true
}
}

provider "kubernetes" {
host = module.eks.cluster_endpoint
cluster_ca_certificate = base64decode(module.eks.cluster_certificate_authority_data)
token = data.aws_eks_cluster_auth.eks_cluster.token
}

provider "kubectl" {
host = module.eks.cluster_endpoint
cluster_ca_certificate = base64decode(module.eks.cluster_certificate_authority_data)
token = data.aws_eks_cluster_auth.eks_cluster.token
}

pls chk above

codal-jayesh · Answer 6 · Mon Aug 08 2022 20:22:59 GMT+0800 (China Standard Time)

I cannot understand how it is getting localhost in "https://localhost/api?timeout=32s"?

Bohdan Tverdyi · Answer 7 · Mon Aug 08 2022 23:45:35 GMT+0800 (China Standard Time)

please try to add this into kubectl provider

provider "kubectl" {
host = module.eks.cluster_endpoint
cluster_ca_certificate = base64decode(module.eks.cluster_certificate_authority_data)
token = data.aws_eks_cluster_auth.eks_cluster.token
load_config_file = false
}

codal-jayesh · Answer 8 · Tue Aug 09 2022 13:18:26 GMT+0800 (China Standard Time)

@bohdantverdyi Thank you.

It has been resolved.