Question
Wildcard subdomains with ssl via load balancer
I am developing a SAAS platform and require a subdomain for each signup, in theory it would be possible to create a new record for each subdomain as someone signs up but this creates overhead that doesn’t exist if wildcard ssl certificates are supported.
I note from the Loadbalancer documentation they are not.
With that said, what would be your recommendation to get past this?
Please note, I am looking for a solution that doesnt require provisioning subdomains for each new sign up.. Not least because of the rate limits on Lets Encrypt (50 certs a week per registered domain), we could of course use a combination of 100 names per cert to get that up to 5k a week which would probably be fine but again that is additional overhead for something which could be very simple.
Thanks
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
×
Having slept, I am thinking it will be possible to do pass through from the LB to my Ingress controller and have that deal with all SSL, with certificates created by cert-manager.
I am new to kube and networking for the most part.. so need to test this but based on what I know it should work…