istio
/
istio.io
mirror of https://github.com/istio/istio.io.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Add warning message for credential name (#4067)

This commit is contained in:
Jimmy Chen 2019-05-12 11:33:19 -07:00 committed by Martin Taillefer
parent 4d94cc61e0
commit 1090df97a4
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
content/docs/tasks/traffic-management/secure-ingress/sds/index.md
View File

@ -32,7 +32,6 @@ and the environment variables `INGRESS_HOST` and `SECURE_INGRESS_PORT` set.
a different implementation of `curl`, for example on a Linux machine.
{{< tip >}}
If you configured an ingress gateway using the [file mount-based approach](/docs/tasks/traffic-management/secure-ingress/mount),
and you want to migrate your ingress gateway to use the SDS approach. There are no
extra steps required.
@ -170,6 +169,11 @@ need to create secrets for multiple hosts and update the gateway definitions.
--from-file=cert=httpbin.example.com/3_application/certs/httpbin.example.com.cert.pem
{{< /text >}}
{{< warning >}}
The secret name **should not** begin with `istio` or `prometheus`, and
the secret **should not** contain a `token` field.
{{< /warning >}}
1. Define a gateway with a `servers:` section for port 443, and specify values for
`credentialName` to be `httpbin-credential`. The values are the same as the
secret's name. The TLS mode should have the value of `SIMPLE`.