DevFW-CICD/ingress-nginx-helm
6
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add Better Documentation for using AuthTLS (#3275)

Browse source 
Enhances the documentation for enabling and using Mutual Authentication.
This commit is contained in:
Fernando Diaz 2018-10-22 14:15:28 -05:00 committed by Manuel Alejandro de Brito Fontes
parent a3bf5dadaf
commit d6dcc3a681
2 changed files with 32 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

5
docs/examples/auth/client-certs/ingress.yaml
View file

@ -4,9 +4,8 @@ metadata:
annotations:
# Enable client certificate authentication
nginx.ingress.kubernetes.io/auth-tls-verify-client: "on"
# Create the secret containing the trusted ca certificates with `kubectl create secret generic auth-tls-chain --from-file=ca.crt --namespace=default`
# NB: The file _must_ be named "ca.crt" and nothing else. This filename is expected to be found in the secret.
nginx.ingress.kubernetes.io/auth-tls-secret: "default/auth-tls-chain"
# Create the secret containing the trusted ca certificates
nginx.ingress.kubernetes.io/auth-tls-secret: "default/ca-secret"
# Specify the verification depth in the client certificates chain
nginx.ingress.kubernetes.io/auth-tls-verify-depth: "1"
# Specify an error page to be redirected to verification errors