loadBalancerIP and annotations in nginx-ingress fluxcd HelmRelease are ignored on azure AKS
I am operating on an Azure AKS cluster, where fluxcd is working properly.
I am trying to configure the nginx-ingress chart via the fluxcd CDR HelmRelease. Specifically to tell nginx-ingress to use an already created static public IP which lies within another resource group as the AKS node resource group.
The underlying AKS service principal has network contributor role on the resource group where the ip lies.
When using the following HelmRelease config file, the loadBalancerIP property (as well as any annotation) is ignored and a new public IP within azure is created an assigned to the azure load balancer.
apiVersion: helm.fluxcd.io/v1
kind: HelmRelease
metadata:
name: helm-nginx-ingress
namespace: nginx-ingress
spec:
releaseName: nginx-ingress
targetNamespace: nginx-ingress
chart:
repository: https://kubernetes-charts.storage.googleapis.com/
name: nginx-ingress
version: 1.24.4
values:
controller.service:
loadBalancerIP: "12.234.162.41"
annotations:
service.beta.kubernetes.io/azure-load-balancer-resource-group: "name-of-resource-group"
To make things easier I also tried with an ip which directly exists in the same resource group as the AKS nodes (to no avail). BTW: There are no errors whats so ever. It just ignores the property and creates a new ip.
Interestingly enough, releasing the same chart with helm 3 directly (so without fluxcd) worked perfectly, even with the special case of the ip not being in the same resource group:
helm upgrade nginx-ingress --install --wait --namespace nginx-ingress \
--set controller.service.loadBalancerIP="12.234.162.41" \
--set controller.service.annotations."service\.beta\.kubernetes\.io/azure-load-balancer-resource-group"="name-of-resource-group" \
stable/nginx-ingress
So my guess is the problem lies somewhere with the CDR HelmRelease and the translation of the values spec. Dis someone experience similar problems?
AKS Kubernetes Version: v1.14.8
fluxcd/flux image tag: 1.17.0
Local Helm version: v3.0.3
Should be this:
values:
controller:
service:
loadBalancerIP: "12.234.162.41"
xxx
https://github.com/helm/charts/blob/master/stable/nginx-ingress/values.yaml#L246
- Can I use helm for fire and forget k8s Jobs?
- helm not creating the resources
- Testing helm chart templating
- Helm chart fails with "nil pointer evaluating interface {}" when trying to evaluate a missing nested key
- How to set multiple argument with postgress helm 3.0
- How to enforce that the directory name must match the chart name?
- Airflow webserver pod unable to get log from worker pod
- Ingress controller does not allow snippets
- How to upgrade at once multiple releases with Helm for the same chart
- Helm tpl function in configmap failing to parse yaml file content
- multiline string to a variable in a helm template?
- New Jenkins Agent Containers Will Not Run Properly
- What is the difference between the quote function vs using quotation marks?
- Helm error : Error: the server has asked for the client to provide credentials
- helm upgrade fail after upgrade to Kubernetes 1.25 due to change in HorizontalPodAutoscaler API version
- Helm dependency: failed to fetch https://...../index.yaml : 401 Jfrog Artifactory
- toYaml in helm template inside range causes error converting YAML to JSON
- How to delete Kubernetes PVC with status Lost
- Helm: Incompatible versions between client and server
- How can a Helm function access a value without knowning the name?
- Pod not created with Helm chart
- Delete specific revision from release made with helm
- helm: x509: certificate signed by unknown authority
- Helm referring to kubernetes secrets in enviroment variables
- Pass list of objects as argument in terraform helm_release
- Using Terraform's helm_release, how do I set a list of objects?
- How can I list all available charts under a helm repo?
- Does helm upgrade reinstall entire chart or only altered manifests
- Helm 3.6.1 fails to fetch (Unauthorized) from authenticated repo
- Helm 3 install for resources that exist