ingress-nginx-helm/docs/examples/auth/client-certs/ingress.yaml

apiVersion: extensions/v1beta1
kind: Ingress
metadata:
  annotations:
    # Enable client certificate authentication
    nginx.ingress.kubernetes.io/auth-tls-verify-client: "on"
    # Create the secret containing the trusted ca certificates
    nginx.ingress.kubernetes.io/auth-tls-secret: "default/ca-secret"
    # Specify the verification depth in the client certificates chain
    nginx.ingress.kubernetes.io/auth-tls-verify-depth: "1"
    # Specify an error page to be redirected to verification errors
    nginx.ingress.kubernetes.io/auth-tls-error-page: "http://www.mysite.com/error-cert.html"
    # Specify if certificates are passed to upstream server
    nginx.ingress.kubernetes.io/auth-tls-pass-certificate-to-upstream: "true"
  name: nginx-test
  namespace: default
spec:
  rules:
  - host: mydomain.com
    http:
      paths:
      - backend:
          serviceName: http-svc
          servicePort: 80
        path: /
  tls:
  - hosts:
    - mydomain.com
    secretName: tls-secret
Updates and extends client cert documentation (#2105) Updates and extends the documentation about enabling client certificate authentication. 2018-02-16 15:17:29 +00:00			`apiVersion: extensions/v1beta1`
			`kind: Ingress`
			`metadata:`
			`annotations:`
			`# Enable client certificate authentication`
			`nginx.ingress.kubernetes.io/auth-tls-verify-client: "on"`
Add Better Documentation for using AuthTLS (#3275) Enhances the documentation for enabling and using Mutual Authentication. 2018-10-22 19:15:28 +00:00			`# Create the secret containing the trusted ca certificates`
			`nginx.ingress.kubernetes.io/auth-tls-secret: "default/ca-secret"`
Updates and extends client cert documentation (#2105) Updates and extends the documentation about enabling client certificate authentication. 2018-02-16 15:17:29 +00:00			`# Specify the verification depth in the client certificates chain`
			`nginx.ingress.kubernetes.io/auth-tls-verify-depth: "1"`
Typo fix: are be->are/to on->to are be->are to on->to 2018-06-01 00:56:28 +00:00			`# Specify an error page to be redirected to verification errors`
Updates and extends client cert documentation (#2105) Updates and extends the documentation about enabling client certificate authentication. 2018-02-16 15:17:29 +00:00			`nginx.ingress.kubernetes.io/auth-tls-error-page: "http://www.mysite.com/error-cert.html"`
Typo fix: are be->are/to on->to are be->are to on->to 2018-06-01 00:56:28 +00:00			`# Specify if certificates are passed to upstream server`
Fix CA certificate example docs 2019-04-08 12:35:34 +00:00			`nginx.ingress.kubernetes.io/auth-tls-pass-certificate-to-upstream: "true"`
Updates and extends client cert documentation (#2105) Updates and extends the documentation about enabling client certificate authentication. 2018-02-16 15:17:29 +00:00			`name: nginx-test`
			`namespace: default`
			`spec:`
			`rules:`
Fix CA certificate example docs 2019-04-08 12:35:34 +00:00			`- host: mydomain.com`
Updates and extends client cert documentation (#2105) Updates and extends the documentation about enabling client certificate authentication. 2018-02-16 15:17:29 +00:00			`http:`
			`paths:`
			`- backend:`
Fix CA certificate example docs 2019-04-08 12:35:34 +00:00			`serviceName: http-svc`
Updates and extends client cert documentation (#2105) Updates and extends the documentation about enabling client certificate authentication. 2018-02-16 15:17:29 +00:00			`servicePort: 80`
			`path: /`
			`tls:`
			`- hosts:`
Fix CA certificate example docs 2019-04-08 12:35:34 +00:00			`- mydomain.com`
Updates and extends client cert documentation (#2105) Updates and extends the documentation about enabling client certificate authentication. 2018-02-16 15:17:29 +00:00			`secretName: tls-secret`