74031cc8b8
Merge pull request #4528 from aledbf/clean-docker
...
Cleanup of docker images
2019-09-03 18:04:58 -07:00
dc20551288
Cleanup of docker images
2019-09-03 19:10:40 -04:00
9c51676f17
Add support to CRL ( #3164 )
...
Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@serpro.gov.br>
Add support to CRL
Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@serpro.gov.br>
2019-09-03 16:47:28 -04:00
d7dc7be276
Fix relative links ( #4522 )
2019-09-03 09:02:07 -04:00
2ba1a9e71a
fix typo ( #4520 )
2019-09-02 17:29:37 -04:00
8def5ef7ca
Add support for multiple alias and remove duplication of SSL certificates ( #4472 )
2019-08-26 10:58:44 -04:00
7d6ce5701f
Fix log format markdown ( #4489 )
2019-08-24 22:48:17 -04:00
2c604e7d38
Add rate limit units and error status
...
Signed-off-by: Tim Hobbs <timothy.hobbs@ic-consult.com>
2019-08-22 16:03:41 +02:00
75d65bbd15
Merge pull request #4327 from leki75/proxyssl
...
Add proxy_ssl_* directives
2019-08-18 09:14:04 -07:00
65b9e2c574
Merge branch 'master' of https://github.com/kubernetes/ingress-nginx into proxyssl
2019-08-16 06:21:53 +02:00
a8a68dd3f5
implementation proposal for zone aware routing
2019-08-15 23:31:47 -04:00
d9de505341
KEP: availability zone aware routing
2019-08-15 19:46:36 -04:00
0b375989f3
Merge pull request #4412 from Shopify/ssl-early-data
...
Add nginx ssl_early_data option support
2019-08-15 10:08:35 -07:00
6948cd7d65
Merge pull request #4351 from aledbf/static-mode
...
KEP: Remove static SSL configuration mode
2019-08-14 21:26:33 -07:00
b21c721196
lua-shared-dicts improvements, fixes and documentation
2019-08-14 22:10:56 -04:00
0d690fba1a
Merge pull request #4356 from aledbf/only-dynamic-mode
...
Only support SSL dynamic mode
2019-08-14 17:08:35 -07:00
adef152db8
Merge pull request #4379 from diazjf/mirror
...
Allow Requests to be Mirrored to different backends
2019-08-13 17:52:24 -07:00
80bd481abb
Only support SSL dynamic mode
2019-08-13 17:33:34 -04:00
f459515d0d
Add quote function in template
...
Co-authored-by: Charle Demers <charle.demers@gmail.com>
2019-08-09 15:47:29 -04:00
8c472190d1
Merge pull request #4086 from jeroen92/issue-4038
...
Resolve #4038 , move X-Forwarded-Port variable to the location context
2019-08-09 08:07:25 -07:00
4a9b02bc03
Remove dynamic TLS records
2019-08-08 15:52:56 -04:00
7219130da4
Add nginx ssl_early_data option support
2019-08-07 16:04:09 -04:00
39144bb987
Add documentation on how to build the Docker image for end-to-end testing
2019-08-06 17:00:56 +02:00
041a8457aa
Fix docs build due to an invalid link ( #4389 )
2019-08-01 19:57:09 -04:00
386486e969
Allow Requests to be Mirrored to different backends
...
Add a feature which allows traffic to be mirrored to
additional backends. This is useful for testing how
requests will behave on different "test" backends.
See https://nginx.org/en/docs/http/ngx_http_mirror_module.html
2019-08-01 11:53:58 -05:00
292aca7c7a
Merge pull request #4329 from steakunderscore/update-oauth2_proxy-docs
...
Update references to oauth2_proxy
2019-08-01 06:58:15 -07:00
3b34d56c92
Add support for psp
2019-08-01 09:45:58 +03:00
c8a3710fb8
Merge pull request #4344 from Nuglif/fastcgi-backend-support
...
Add FastCGI backend support (#2982 )
2019-07-31 11:20:14 -07:00
72271e9313
FastCGI backend support ( #2982 )
...
Co-authored-by: Pierrick Charron <pierrick@adoy.net>
2019-07-31 10:39:21 -04:00
1abc11af90
Remove static SSL configuration mode
2019-07-25 09:19:06 -04:00
e1f062dd53
Merge pull request #4348 from aledbf/kep
...
KEP process
2019-07-24 18:39:51 -07:00
cb33c4ed26
Start using KEPs for new features or breaking changes
2019-07-24 21:08:07 -04:00
cbc5d3a917
duplicate argument "--disable-catch-all"
2019-07-22 14:48:23 +03:00
5e64b6834c
Add [$proxy_alternative_upstream_name]
...
https://github.com/kubernetes/ingress-nginx/pull/4246
2019-07-19 07:36:13 +08:00
b8cedabbff
Update references to oauth2_proxy
...
The custodian of the project has been shifted from [bitly] to [pusher].
So this diff updates these references.
[bitly]: https://github.com/bitly/oauth2_proxy
[pusher]: https://github.com/pusher/oauth2_proxy
2019-07-18 07:59:22 +01:00
def13fc06c
Add proxy_ssl_* directives
...
Add support for backends which require client certificate (eg. NiFi)
authentication. The `proxy-ssl-secret` k8s annotation references a
secret which is used to authenticate to the backend server. All other
directives fine tune the backend communication.
The following annotations are supported:
* proxy-ssl-secret
* proxy-ssl-ciphers
* proxy-ssl-protocol
* proxy-ssl-verify
* proxy-ssl-verify-depth
2019-07-18 03:21:52 +02:00
589c9a20f9
Merge pull request #4278 from moolen/feat/auth-req-cache
...
feat: auth-req caching
2019-07-17 12:06:12 -07:00
23504db770
feat: auth-req caching
...
add a way to configure the `proxy_cache_*` [1] directive for external-auth.
The user-defined cache_key may contain sensitive information
(e.g. Authorization header).
We want to store *only* a hash of that key, not the key itself on disk.
[1] http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cache_key
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2019-07-17 18:39:04 +02:00
d9c0ede20a
Update how-it-works.md
...
Changed text to link
2019-07-12 14:12:15 +05:30
3b0c523e49
added proxy-http-version annotation to override the HTTP/1.1 default connection type to reverse proxy backends
2019-07-08 14:32:00 -04:00
cd25a0c17a
adjust docs
2019-07-01 10:24:09 -04:00
ef3ebbeab5
Add notes on timeouts while using long GRPC streams
...
GRPC streams longer than 60s hit multiple timeouts that NGINX has defined. Not all of them are easy to find, so I added some notes to the GRPC example to warn users of setting the correct timeouts if the wish their stream to not be aborted after 60 seconds.
2019-06-25 10:29:39 +02:00
ef4b560499
Update annotations.md
2019-06-20 20:19:11 -04:00
84102eec2b
Migrate to new networking.k8s.io/v1beta1 package
2019-06-13 11:32:39 -04:00
e76418cd99
Merge pull request #4162 from stramel/patch-1
...
Add "text/javascript" to compressible MIME types
2019-06-06 11:35:34 -07:00
686f2310e4
Add "text/javascript" to compressible MIME types
...
Based on the HTML Standard, https://html.spec.whatwg.org/multipage/scripting.html#scriptingLanguages , servers _should_ use `text/javascript`.
2019-06-06 13:11:56 -05:00
286ff13af2
Merge pull request #4048 from fedunineyu/change-upstream-on-error-with-sticky-session
...
Change upstream on error when sticky session balancer is used
2019-06-06 07:22:17 -07:00
78d6ce6e6e
Partially revert usage of kustomize for installation ( #4159 )
2019-06-05 10:59:38 -04:00
4a913fac2a
Add clarification on how to enable path matching
...
The fact that you need to explicitly add the annotation is easy to miss.
This makes this more explicit, while leaving the finer details to the
linked annotations document.
2019-06-05 11:14:50 +10:00
30d3505e7e
Update README.md for external-auth Test 4
...
Title for Test 4 should be `secure service with valid auth header`. The current one is the same as Test 3.
2019-05-29 13:23:20 -05:00
Kubernetes Prow Robot
Manuel Alejandro de Brito Fontes
Ricardo Katz
Tobias Bradtke
Rui Lopes
Tim Hobbs
Gabor Lekeny
Elvin Efendi
Pierrick Charron
Maxime Ginters
Jeroen Schutrup
Fernando Diaz
otnielvh
Charle Demers
Oguzhan Inan
Jude Zhu
Henry Jenkins
Moritz Johner
Kautilya Tripathi
E. Stuart Hicks
Roemer Hendrikx
Tristan Matthews
Michael Stramel
Nikolas Skoufis
Chuan Long