Thanks for the reply. I tried that and it failed … access to :80 was no more… So I was thinking the kubernetes ingress router would likely need to be reconfig-ed , as well as a service to work off of https. Which is a bit more work than I had hoped for… But ok… would give it a shot.
Then, just to have the thing functional again, I had reverted the external-url, commented it out and reconfigured again. Went on to test that the original redirects back and forth are still functional … just to find out that now https reverse proxying actually worked !!!
Color me confused !
Started GET "/" for 10.130.0.1 at 2018-12-31 03:46:16 +0000
Processing by RootController#index as HTML
Redirected to https://git.domain.net/users/sign_in
Filter chain halted as :redirect_unlogged_user rendered or redirected
Completed 302 Found in 5ms (ActiveRecord: 0.0ms)
==> /var/log/gitlab/gitlab-rails/production_json.log <==
{"method":"GET","path":"/","format":"html","controller":"RootController","action":"index","status":302,"duration":6.18,"view":0.0,"db":0.0,"location":"https://git.domain.net/users/sign_in","time":"2018-12-31T03:46:16.883Z","params":[],"remote_ip":"10.130.0.1","user_id":null,"username":null }
Now you can see the line
Redirected to https://git.domain.net/users/sign_in
working in https mode.
Double checked the gitlab.rb,
## GitLab URL
##! URL on which GitLab will be reachable.
##! For more details on configuring external_url see:
##! https://docs.gitlab.com/omnibus/settings/configuration.html#configuring-the-external-url-for-gitlab
#external_url 'GENERATED_EXTERNAL_URL'
#external_url 'https://git.domain.net'
then checked the generated gitlab.yml (/var/opt/gitlab…/gitlab.yml)
## GitLab settings
gitlab:
## Web server settings (note: host is the FQDN, do not include http://)
host: gitlab.os.domain.local
port: 80
https: false
looks ok.
Then I disabled the git.domain.net:80 reverse proxy (external nginx) and it’s still fine… no more double redirects. I have no idea what has changed.
So in the end, your suggestion DID work, somehow. Awesome! Thx.