DevFW-CICD/ingress-nginx-helm
6
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

ingress: adds configurable SSL redirect nginx controller

Browse source 
* add global value to config map
* add per ingress value as annotation to ingress resources
This commit is contained in:
Christian Simon 2016-06-05 15:19:55 +01:00
parent 08a05db93c
commit 3ae80fd3cc
6 changed files with 91 additions and 29 deletions
Download patch file Download diff file Expand all files Collapse all files

5
controllers/nginx/README.md
View file

@ -131,6 +131,11 @@ To disable this behavior use `hsts=false` in the NGINX ConfigMap.
NGINX provides the configuration option [ssl_buffer_size](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_buffer_size) to allow the optimization of the TLS record size. This improves the [Time To First Byte](https://www.igvita.com/2013/12/16/optimizing-nginx-tls-time-to-first-byte/) (TTTFB). The default value in the Ingress controller is `4k` (nginx default is `16k`);
### Server-side HTTPS enforcement through redirect
By default the controller redirects (301) to HTTPS if TLS is enabled for that ingress . If you want to disable that behaviour globally, you can use `ssl-redirect: "false"` in the NGINX ConfigMap.
To configure this feature for specfic ingress resources, you can use the `ingress.kubernetes.io/ssl-redirect: "false"` annotation in theparticular resource.
## Proxy Protocol