I execute the yaml file in k8s and report such an error in the log on the controller about apisix-ingress-controller HOT 17 CLOSED

will update today

from apisix-ingress-controller.

please confirm if you have set the right admin key.

from apisix-ingress-controller.

I tried to find api7/ingress-controller to access the admin-key of APISIX, but I did not find the corresponding option in the config.json file, may I ask where to configure the admin-key

from apisix-ingress-controller.

@gxthrj do you have time to take a look at this issue?

from apisix-ingress-controller.

@maxluo1992 Now we do not support a way to config admin-key, I am not sure how to configure them when we use multi-APISIX cluster with ingress.class annotation. There should be many admin-keys.

For now , I suggest you to remove the admin-key and use allow_admin to keep Admin API safe.

from apisix-ingress-controller.

@maxluo1992 For now, apisix-ingress-controller do not support the config admin_key from Apache APISIX.
When using apisix-ingress-controller with APISIX, it is recommended to remove the admin_key setting. You can use allow_admin to restrict the access scope of the APISIX control plane to ensure security.

from apisix-ingress-controller.

I will organize this description into the document.

from apisix-ingress-controller.

Hi, I removed admin_key and used allow_admin settings as you suggested, but then the log message says admin_key is missing. Can you please suggest anything for my issue.

from apisix-ingress-controller.

ping @gxthrj

from apisix-ingress-controller.

Admin key should be stored in Kubernetes Secret, we should add secret informers to fetch them and use them when communicating with APISIX. @gxthrj @moonming @membphis

from apisix-ingress-controller.

Hi, I removed admin_key and used allow_admin settings as you suggested, but then the log message says admin_key is missing. Can you please suggest anything for my issue.

It is strange.
Please tell us what version of APISIX you are using.
And show the admin_key section in config.yaml and config-default.yaml.

from apisix-ingress-controller.

Admin key should be stored in Kubernetes Secret, we should add secret informers to fetch them and use them when communicating with APISIX. @gxthrj @moonming @membphis

Yes, it is a way, but APISIX should know this secret, too. We can discuss this in #50 .

from apisix-ingress-controller.

It is strange.
Please tell us what version of APISIX you are using.
And show the admin_key section in config.yaml and config-default.yaml.

Hello, we used apache/apisix:latest image from docker hub and we completely commented out the admin_key part as below.

config-default.conf:

config.yaml:

from apisix-ingress-controller.

I will try to reproduce with the latest version of APISIX

from apisix-ingress-controller.

any news?

from apisix-ingress-controller.

@maxluo1992 This is due to the lack of admin_key support, we will add some documents to tell users how to close APISIX's admin_key.

from apisix-ingress-controller.

@maxluo1992 See the point 4 in https://github.com/apache/apisix-ingress-controller/blob/master/docs/FAQ.md.

from apisix-ingress-controller.