I am setting up a new dev cluster with AKS. We have multiple namespaces in this cluster for multiple clients, that use the same TLS secret. However, in the previous cluster, I have had to set up the TLS secrets in each namespace.
I have found some articles which suggest that it is possible to replicate the TLS secrets from one ns to all the other namespaces within the same cluster.
In this specific article: https://boxboat.com/2018/07/02/kubernetes-nginx-ingress-tls-secrets-all-namespaces/, 2 pods are created to search for ns and to search from secrets and reflect the default one to the other ns.
I have managed to set up both pods, all seems to be running, but the secret is not reflected to the default ns as suggested in the article.
As suggested in the article, I have managed to set up in the nginx-ingress ns:
PODS:
pod/ingress-cert-reflector-66cfc47656-zwxzz 2/2 Running 116 (31m ago) 44h
DEPLOYMENT:
deployment.apps/ingress-cert-reflector 1/1 1 1 44h
SERVICE ACCOUNT:
ingress-cert-reflector 0 44h
When I run kubectl describe pod, the outcome looks satisfying:
*Name: ingress-cert-reflector-66cfc47656-zwxzz
Namespace: nginx-ingress
Priority: 0
Node: aks-nodepool1-18131159-vmss000003/10.104.0.4
Start Time: Wed, 12 Oct 2022 16:34:31 +0100
Labels: app=ingress-cert-reflector
pod-template-hash=66cfc47656
Annotations: