Hide Forgot
Description of problem: Enable wildcard routes for router. Create edge route and change it to 'edge/Allow'. the route cannot work when sent a http request. Version-Release number of selected component (if applicable): # openshift version openshift v3.4.0.19+346a31d kubernetes v1.4.0+776c994 etcd 3.1.0-rc.0 openshift3/ose-haproxy-router v3.4.0.19 6e54d63e6bc9 How reproducible: always Steps to Reproduce: 1. make sure the router is running 2. enable wildcard route for router #oc env dc router ROUTER_ALLOW_WILDCARD_ROUTES=true 3. Create app/service/edge route $ oc create -f https://raw.githubusercontent.com/openshift-qe/v3-testfiles/master/routing/caddy-docker.json -f https://raw.githubusercontent.com/openshift-qe/v3-testfiles/master/routing/edge/service_unsecure.json -f https://raw.githubusercontent.com/zhaozhanqi/subdomain/master/route_edge.json 4. change route termination to 'edge/Allow' oc patch route secured-edge-route -p '{"spec":{"tls": { "insecureEdgeTerminationPolicy":"Allow"}}}' 5. Sent https and http request to route Actual results: https request can work well http return 503 Expected results: both https and http work well. Additional info: 'edge/Redirct' works well
Fixed with PR: https://github.com/openshift/origin/pull/11760
This has been merged into ose and is in OSE v3.4.0.22 or newer.
Checked on ocp build v3.4.0.22 with router image ccce8ccad9bb Issue has been fixed. The wildcard domain works well for the edge route with all the insecureEdgeTerminationPolicy.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2017:0066