I'm currently using Prometheus to scrape metrics from a /metrics
endpoint on my pods.
In order to identify the pods I'm using kubernetes service discovery which discovers the pods and targets them through their internal IP.
The problem is I want to move from http to https scheme to secure the endpoints, but as Prometheus uses IP endpoint its giving me the error
x509: cannot validate certificate for 172.17.0.18 because it doesn't contain any IP SANs
I'm kinda lost on how to proceed to enable the client certificate validation without issuing a per IP certificate which does not have any sense as IPs are internal to the cluster and are not static.