DevFW-CICD/ingress-nginx-helm
16
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add note for certificate authentication in Cloudflare

Browse source
This commit is contained in:
Manuel de Brito Fontes 2017-10-24 22:18:23 -03:00
parent f8087b93ee
commit 4adca4a914
1 changed files with 11 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
docs/user-guide/annotations.md
View file

@ -149,6 +149,17 @@ The URL/Page that user should be redirected in case of a Certificate Authenticat
Please check the [tls-auth](../examples/auth/client-certs/README.md) example. Please check the [tls-auth](../examples/auth/client-certs/README.md) example.
**Important:**
TLS with Client Authentication is NOT possible in Cloudflare as is not allowed it and might result in unexpected behavior.
Cloudflare only allows Authenticated Origin Pulls and is required to use their own certificate:
https://blog.cloudflare.com/protecting-the-origin-with-tls-authenticated-origin-pulls/
Only Authenticated Origin Pulls are allowed and can be configured by following their tutorial:
https://support.cloudflare.com/hc/en-us/articles/204494148-Setting-up-NGINX-to-use-TLS-Authenticated-Origin-Pulls
### Configuration snippet ### Configuration snippet
Using this annotation you can add additional configuration to the NGINX location. For example: Using this annotation you can add additional configuration to the NGINX location. For example: