DevFW-CICD/ingress-nginx-helm
14
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge pull request #1583 from aledbf/add-ca-comment

Browse source 
Add note for certificate authentication in Cloudflare
This commit is contained in:
Manuel Alejandro de Brito Fontes 2017-10-24 22:19:51 -03:00 committed by GitHub
commit 2f9d1443c6
1 changed files with 11 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
docs/user-guide/annotations.md
View file

@ -149,6 +149,17 @@ The URL/Page that user should be redirected in case of a Certificate Authenticat
Please check the [tls-auth](../examples/auth/client-certs/README.md) example. Please check the [tls-auth](../examples/auth/client-certs/README.md) example.
**Important:**
TLS with Client Authentication is NOT possible in Cloudflare as is not allowed it and might result in unexpected behavior.
Cloudflare only allows Authenticated Origin Pulls and is required to use their own certificate:
https://blog.cloudflare.com/protecting-the-origin-with-tls-authenticated-origin-pulls/
Only Authenticated Origin Pulls are allowed and can be configured by following their tutorial:
https://support.cloudflare.com/hc/en-us/articles/204494148-Setting-up-NGINX-to-use-TLS-Authenticated-Origin-Pulls
### Configuration snippet ### Configuration snippet
Using this annotation you can add additional configuration to the NGINX location. For example: Using this annotation you can add additional configuration to the NGINX location. For example: