https://rancher.com/ logo
Title
b

bland-painting-61617

07/17/2022, 4:09 PM
Hello, quick question, in rancher backups,
insecureTLSSkipVerify: true
is configured, yet I'm seeing
Failed to check if s3 bucket [rancher-backups] exists, error: Head "<https://xxx/rancher-backups/>": x509: certificate signed by unknown authority
, what am I missing? I'm trying this because I can't get rancher backups to even deploy when specifying the custom CA certificate, PEM format results in
error converting YAML to JSON: yaml: line 22: could not find expected
Found this in the comment in the source code for the
readS3EndpointCA
function:
// I expect the CA to be passed as base64 string OR a file system path.
	// I do this to be able to pass it through rke/rancher api without writing it
	// to the backup container filesystem.
And this issue answers why it won't work when no certificate is provided and insecure TLS verification is on: https://github.com/rancher/backup-restore-operator/issues/254