DevFW-CICD/ingress-nginx-helm
6
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Adds support for error page in Client Certificate Authentication

Browse source
This commit is contained in:
Ricardo Pchevuzinske Katz 2017-09-03 17:12:03 -03:00
parent 54459d8d42
commit d33b748716
No known key found for this signature in database
GPG key ID: 173CD5BA1DA70A25
6 changed files with 29 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

3
examples/auth/client-certs/nginx/README.md
View file

@ -32,7 +32,7 @@ Certificate Authentication is achieved through 2 annotations on the Ingress, as
| --- | --- | --- |
|ingress.kubernetes.io/auth-tls-secret|Sets the secret that contains the authorized CA Chain|string|
|ingress.kubernetes.io/auth-tls-verify-depth|The verification depth Certificate Authentication will make|number (default to 1)|
|ingress.kubernetes.io/auth-tls-error-page|The page that user should be redirected in case of Auth error|string (default to empty|
The following command instructs the controller to enable TLS authentication using the secret from the ``ingress.kubernetes.io/auth-tls-secret``
annotation on the Ingress. Clients must present this cert to the loadbalancer, or they will receive a HTTP 400 response
@ -61,6 +61,7 @@ Rules:
Annotations:
auth-tls-secret: default/caingress
auth-tls-verify-depth: 3
auth-tls-error-page: http://www.mysite.com/error-cert.html
Events:
FirstSeen LastSeen Count From SubObjectPath Type Reason Message