Ingress-nginx: Validating webhook validate.nginx.ingress.kubernetes.io: annotation key has invalid format

How to reproduce it:
start minikube

    ```minikube start```

deploy Ingress-nginx from static yaml file

kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/master/deploy/static/provider/baremetal/deploy.yaml

Method to deploy ingress-nginx in minikube is describes in deployement doc is followoing.
minikube addons enable ingress

I tried same invalid-ingress.yaml on minikube and it got created without any error

vagrant@ubuntu-xenial:~$ minikube addons enable ingress 🌟 The 'ingress' addon is enabled vagrant@ubuntu-xenial:~$ kubectl get pod -A NAMESPACE NAME READY STATUS RESTARTS AGE kube-system coredns-66bff467f8-8sj7t 1/1 Running 2 56d kube-system coredns-66bff467f8-rd4s2 1/1 Running 2 56d kube-system etcd-minikube 1/1 Running 1 56d kube-system kindnet-nn4pw 1/1 Running 2 56d kube-system kube-apiserver-minikube 1/1 Running 1 56d kube-system kube-controller-manager-minikube 1/1 Running 1 56d kube-system kube-proxy-mjwwx 1/1 Running 1 56d kube-system kube-scheduler-minikube 1/1 Running 1 56d kube-system nginx-ingress-controller-6d57c87cb9-zn9b7 1/1 Running 2 56d kube-system storage-provisioner 1/1 Running 2 56d vagrant@ubuntu-xenial:~$ kubectl apply -f invalid-ingress.yaml ingress.networking.k8s.io/k8s-debug created vagrant@ubuntu-xenial:~$ kubectl get Ingress -A NAMESPACE NAME CLASS HOSTS ADDRESS PORTS AGE default k8s-debug <none> blah.blah.test 172.17.0.2 80 15m

@kundan2707 thank you.
This is not about deployment method. I used both methods (deploy.yaml and Helm Chart) on Minikube just for testing of validating webhook.

Do you have validating webhook correctly enabled? I don't think so, because in that case the invalid Ingress objects should be rejected and only valid Ingress objects will be allowed.

@kundan2707 which version of Minikube are you using?
I just tested minikube addons enable ingress on minikube version: v1.11.0 and it rejects invalid ingress object too and there is same fail in Kube-apiserver's logs. So it's really not about deployment method.

I don't know if you understand me. The validating webhook working fine - it rejects invalid objects and allows valid objects. It's working fine for me. This issue is about the fail message in Kube-apiserver log which say that there is some mistake in webhook's configuration or code. This is not fatal and webhook is working, but (probably) there is some incompatibility with Kube-apiserver's way of working with log messages.

@kundan2707 thank you.
This is not about deployment method. I used both methods (deploy.yaml and Helm Chart) on Minikube just for testing of validating webhook.

Do you have validating webhook correctly enabled? I don't think so, because in that case the invalid Ingress objects should be rejected and only valid Ingress objects will be allowed.

@filip-havlicek Yes, I checked validating webhoot was not correctly enabled

@kundan2707 which version of Minikube are you using?
I just tested minikube addons enable ingress on minikube version: v1.11.0 and it rejects invalid ingress object too and there is same fail in Kube-apiserver's logs. So it's really not about deployment method.

I don't know if you understand me. The validating webhook working fine - it rejects invalid objects and allows valid objects. It's working fine for me. This issue is about the fail message in Kube-apiserver log which say that there is some mistake in webhook's configuration or code. This is not fatal and webhook is working, but (probably) there is some incompatibility with Kube-apiserver's way of working with log messages.
@filip-havlicek I am using minikube version: v1.11.0
Yes i understand. After corretly configuring validating webhook I am also getting same message

API group is err in doc

https://github.com/kubernetes/ingress-nginx/blob/nginx-0.30.0/docs/deploy/validating-webhook.md
```yaml
apiVersion: admissionregistration.k8s.io/v1beta1
kind: ValidatingWebhookConfiguration
metadata:
name: check-ingress
webhooks:

• name: validate.nginx.ingress.kubernetes.io
  rules:
  
  
  
  • apiGroups:
  
  
  • extensions #1.16 -
  
  
  • networking.k8s.io #1.16+
    
    apiVersions:
  
  
  • v1beta1
    
    operations:
  
  
  • CREATE
  
  
  • UPDATE
    
    resources:
  
  
  • ingresses
    
    failurePolicy: Fail
    
    clientConfig:
    
    service:
    
    namespace: ingress-nginx
    
    name: ingress-validation-webhook
    
    path: /networking.k8s.io/v1beta1/ingress
    
    caBundle:
    
    ````
  
  

https://github.com/kubernetes/ingress-nginx/commit/0dce5be743ae012dc5b22c1cf4b91dcdb8b64d88

I am getting the above message

> kubectl apply -f ingress.yaml

Error from server: error when creating "ingress.yaml": admission webhook "validate.nginx.ingress.kubernetes.io"
denied the request: rejecting admission review because the request does not contains an Ingress resource but
networking.k8s.io/v1, Resource=ingresses with name example-ingress in namespace default

What does this mean?

Please update to v0.41.0 (chart version 3.8.0).

I am getting the above message

> kubectl apply -f ingress.yaml

Error from server: error when creating "ingress.yaml": admission webhook "validate.nginx.ingress.kubernetes.io"
denied the request: rejecting admission review because the request does not contains an Ingress resource but
networking.k8s.io/v1, Resource=ingresses with name example-ingress in namespace default

What does this mean?

This issue is fixed in 0.40.0. Before this version ingresses networking.k8s.io/v1 (you are running k8s 1.19) were not supported in the validation webhook