Azure nginx 控制器：验证 SSL 证书时出现意外错误

当使用 nginx 控制器访问使用 aks

Our services aren't available right now We're working to restore all services as soon as possible. Please check back soon.

部署的门户时，我收到以下信息

查看入口日志，我得到

Unexpected error validating SSL certificate certificate is valid for example-aks-dev.brazilsouth.cloudapp.azure.com, not endpoint endpoint-example-dev-h2a3adekfjkxgrfk.a01.azurefd.net 

查看文档我发现

Ensure that the certificate order is leaf->intermediate->root, otherwise the controller will not be able to import the certificate, and you'll see this error in the log

（之前的错误），但我不知道如何修复它。我不是专家，入口和其他组件是使用舵图创建的。 ingress 的 tsl 部分被注释，这意味着（我猜）证书是自动生成和自签名的

查看秘密时，我得到一个列表：

NAME                                  TYPE                 DATA   AGE
cert-manager-webhook-ca               Opaque               3      304d
dev-example-ingress-nginx-admission   Opaque               3      304d
letsencrypt                           Opaque               1      304d
sh.helm.release.v1.cert-manager.v1    helm.sh/release.v1   1      304d
sh.helm.release.v1.dev-exing.v1     helm.sh/release.v1   1      304d
sh.helm.release.v1.dev-exing.v2     helm.sh/release.v1   1      304d
sh.helm.release.v1.dev-exing.v3     helm.sh/release.v1   1      293d

我找不到解决办法

apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
  name: nginx-ingress
  annotations:
    cert-manager.io/cluster-issuer: letsencrypt-prod
spec:
  ingressClassName: nginx
  rules:
  - host: dev.perfai.us
    http:
      paths:
      - path: /
        pathType: Prefix
        backend:
          service:
            name: example-service
            port:
              number: 80
  tls:
  - hosts:
    - dev.perfai.us
    secretName: dev-perfai-us-tls