Whether the TLS cert/key already have been base64 encoded?

markdocker07 · October 10, 2021, 7:41am

I am watching a tutorial of K8s Ingress:

when there config Ingress TLS, you see the:

data:
  tls.crt: base64 encoded cert
  tls.key: base64 encoded key

I want to know whether should base64 encode the cert/key content ? or the cert/key content already have been base64 encoded?

macintoshprime · October 10, 2021, 2:45pm

Some more details here for TLS secrets. But the answer I think you’re looking for from that is this assuming you create the key using kubectl

kubectl create secret tls my-tls-secret \
  --cert=path/to/cert/file \
  --key=path/to/key/file

“”"
The public/private key pair must exist beforehand. The public key certificate for --cert must be .PEM encoded (Base64-encoded DER format), and match the given private key for --key . The private key must be in what is commonly called PEM private key format, unencrypted. In both cases, the initial and the last lines from PEM (for example, --------BEGIN CERTIFICATE----- and -------END CERTIFICATE---- for a certificate) are not included.
“”"

Topic		Replies	Views
Postman SSL Error: Unable to verify the first certificate General Discussions development	0	1410	March 9, 2022
Ingress, redirect to https General Discussions	0	7983	December 27, 2018
How to show the SSL certificate to purchased by myself not Self-Signed Certificate when access via IP addess General Discussions	0	434	April 15, 2021
What is the ideal way to add docker-truststore certificates to kubernetes deployment General Discussions	0	684	August 26, 2019
Nginx.ingress.kubernetes.io/auth-tls-verify-client: "on" is not working General Discussions	5	4873	June 6, 2021

Whether the TLS cert/key already have been base64 encoded?

Related topics