Morning !
I trying to use a customInitContainers to add custom certificates to able to connect using LDAP from Jenkins. Actually I’m have been using a Jenkins Helm Chart Version 5.1.20. The certificates are a existing secrets that I deployed in K8s but I have this problem:
argocd interfaz:
create Pod jenkins-calidad-test-app-0 in StatefulSet jenkins-calidad-test-app failed error: Pod “jenkins-calidad-test-app-0” is invalid: spec.initContainers[0].volumeMounts[1].name: Not found: “custom-ca-certs”
Values config:
controller:
customInitContainers:
- name: add-ca-certs
image: "jenkins/jenkins:lts"
imagePullPolicy: Always
command:
- "sh"
- "-c"
- >
cat /etc/ssl/certs/ca-certificates.crt /tmp/custom-ca-certs.crt > /cacerts-share/ca-certificates.crt
&& cp ${JAVA_HOME}/jre/lib/security/cacerts /cacerts-share/cacerts
&& chmod 644 /cacerts-share/cacerts
&& ${JAVA_HOME}/bin/keytool -import -trustcacerts -alias custom-ca-certs -keystore /cacerts-share/cacerts -file /tmp/custom-ca-certs.crt -noprompt -storepass changeit
volumeMounts:
- name: cacerts-share
mountPath: /cacerts-share
- name: custom-ca-certs
mountPath: /tmp/custom-ca-certs.crt
subPath: custom-ca-certs.crt
volumes:
- name: cacerts-share
emptyDir: {}
- name: custom-ca-certs
secret:
secretName: cert.crt
persistence:
enabled: true
storageClass:
annotations: {}
labels: {}
accessMode: "ReadWriteOnce"
size: "16Gi"
volumes:
- name: cacerts-share
emptyDir: {}
mounts:
- mountPath: /etc/ssl/certs/ca-certificates.crt
name: cacerts-share
subPath: cert.crt
- mountPath: /opt/java/openjdk/lib/security/cacerts
name: cacerts-share
subPath: cacerts
What I’m doing wrong?
Thx