Gitlab Operator On Openshift using external wildcard Certs

Can someone please tell me what I’m doing wrong … I’m seriously struggling to deploy GitLab Operator on Openshift v4.9.15 using my own wildcard cert for the Openshift domain. I’m using gitlab-operator-openshift-0.6.0.yaml. This is a brand new install.

I am following these instructions:

  1. GitLab Operator | GitLab
  2. TLS options | GitLab

My wildcard cert was issued by Digitcert from the CSR file. This cert has been used to secure the openshift service successfully.

I am not clear how to convert the stated TLS requirements into something I can feed into Openshift. I assume that this is via properties in the gitlab crd.

My gitlab CRD looks like:

apiVersion: apps.gitlab.com/v1beta1
kind: GitLab
metadata:
  name: gitlab
spec:
  chart:
    version: "5.9.0" # See https://gitlab.com/gitlab-org/cloud-native/gitlab-operator/-/releases
    values:
      global:
        edition: ce
        hosts:
          domain: apps.ocp01.domain.com
          hostSuffix: live
        ingress:
          enabled: false
          provider: default # ref https://gitlab.com/gitlab-org/cloud-native/gitlab-operator/-/issues/354
          class: none
          configureCertmanager: false
          tls:
            secretName: digitcert-wildcard-tls-chain
      nginx-ingress:
        enabled: false
      certmanager:
        install: false

When I apply this file it kind of times out with

2022-04-04T16:28:40.040Z        DEBUG   controllers.GitLab      Creating object {"gitlab": "gitlab.gitlab-system", "type": "*v1.Job", "reference": "gitlab-system/gitlab-shared-secrets-1-obd"}
2022-04-04T16:33:41.124Z        ERROR   controllers.GitLab      Timeout for Job exceeded.       {"gitlab": "gitlab.gitlab-system", "job": "gitlab-shared-secrets-1-obd", "namespace": "gitlab-system", "timeout": "5m0s", "error": "Timeout: The Job did not finish in time"}
gitlab.com/gitlab-org/cloud-native/gitlab-operator/controllers.(*GitLabReconciler).Reconcile
        /workspace/controllers/gitlab_controller.go:139
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Reconcile
        /go/pkg/mod/sigs.k8s.io/controller-runtime@v0.10.1/pkg/internal/controller/controller.go:114
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).reconcileHandler
        /go/pkg/mod/sigs.k8s.io/controller-runtime@v0.10.1/pkg/internal/controller/controller.go:311
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).processNextWorkItem
        /go/pkg/mod/sigs.k8s.io/controller-runtime@v0.10.1/pkg/internal/controller/controller.go:266
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Start.func2.2
        /go/pkg/mod/sigs.k8s.io/controller-runtime@v0.10.1/pkg/internal/controller/controller.go:227
2022-04-04T16:33:41.124Z        ERROR   controller.gitlab       Reconciler error        {"reconciler group": "apps.gitlab.com", "reconciler kind": "GitLab", "name": "gitlab", "namespace": "gitlab-system", "error": "Timeout: The Job did not finish in time"}
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Start.func2.2

Any advice, links to blogs that walk me through this on openshift or any other help would be greatly received.