Let’s say, from the KOTS UI, we click the “Configure Prometheus Address” setting and give it a custom address. It’s in another namespace, and kotsadm won’t display it because the trust store doesn’t include the cert bundle hash. We’ll instead see something along the following:
{“level”:“error”,“ts”:“2022-02-22T22:22:22Z”,“msg”:“failed to prometheus query range: failed to do req: Get "https://server.example.com/api/v1/query_range?end=1234567890&query=fancy_query\”: x509: certificate signed by unknown authority"}
How would we go about adding that CA cert, or enabling an insecure connection?