Commit graph

85 commits

Author SHA1 Message Date
Antoine Cotten
9211f3beaf
Document changes to annotations with Secret reference 2018-04-20 00:31:25 +02:00
Roman Sokolkov
54f1568e11
DOCS: Add clarification regarding ssl passthrough 2018-04-19 17:13:46 +02:00
Rajat Jindal
4237f290ed fix the default cookie name in doc 2018-04-18 09:27:34 -07:00
Nick Novitski
8886b8a50e Add vts-sum-key config flag 2018-04-17 11:39:32 -07:00
Giancarlo Rubio
c60ed24f4b Detect if header injected request_id before creating one 2018-04-17 15:49:35 +02:00
k8s-ci-robot
564ec885fb
Merge pull request #2353 from bashofmann/master
Add proxy-add-original-uri-header config flag
2018-04-16 05:46:59 -07:00
Bastian Hofmann
1c17962ba0 Add proxy-add-original-uri-header config flag
This makes it configurable if a location adds an X-Original-Uri header to the backend request. Default is "true", the current behaviour.
2018-04-16 12:34:26 +02:00
AdamDang
bf9edcc9f7
Typo fix in cli-arguments.md
it's endpoints->its endpoints
2018-04-15 23:45:01 +08:00
Elvin Efendi
d6eb44376d run lua-resty-waf in different modes (#2317)
* run lua-resty-waf in different modes

* update docs
2018-04-09 09:19:13 -03:00
Elvin Efendi
bad8295a42 extra waf rules per ingress (#2315)
* extra waf rules per ingress

* document annotation nginx.ingress.kubernetes.io/lua-resty-waf-extra-rules

* regenerate internal/file/bindata.go
2018-04-09 07:14:30 -03:00
Elvin Efendi
16faf309ca annotation to ignore given list of WAF rulesets (#2314) 2018-04-08 22:55:23 -03:00
Elvin Efendi
a6fe800a47 lua-resty-waf controller (#2304) 2018-04-08 17:37:13 -03:00
Alvaro Aleman
e7aa74b5d4 Add NoAuthLocations and default it to "/.well-known/acme-challenge" (#2243)
* Add NoAuthLocations and default it to "/.well-known/acme-challenge"

* Add e2e tests for no-auth-location

* Improve wording of no-auth-location tests
2018-04-01 21:02:34 -03:00
AdamDang
660e67dc9e Typo fixes in modsecurity.md (#2274)
* Update modsecurity.md

Some typo fixes

* Update modsecurity.md
2018-03-29 13:48:16 -03:00
Sylvain Rabot
385368990c Managing a whitelist for _/nginx_status (#2187)
Signed-off-by: Sylvain Rabot <s.rabot@lectra.com>
2018-03-28 09:27:34 -03:00
AdamDang
5c016bee87 Update annotations.md (#2255)
a typo fix
2018-03-25 12:55:30 -03:00
Zenara Daley
6e099c5f57 Add EWMA as configurable load balancing algorithm (#2229) 2018-03-23 12:06:21 -03:00
maxlaverse
8575769781 Make proxy_next_upstream_tries configurable (#2232)
* Make proxy_next_upstream_tries configurable

* Code generation
2018-03-22 08:12:36 -03:00
Manuel Alejandro de Brito Fontes
df00b03a70
Fix log format documentation (#2219) 2018-03-20 08:51:04 -03:00
Manuel Alejandro de Brito Fontes
41217eb9e4
Update cli-arguments.md (#2213) 2018-03-19 13:17:44 -03:00
Alvaro Aleman
94deb3a01a Add configoption to exclude routes from tls upgrading (#2203)
* Add configoption to exclude routes from tls upgrading

* Add tests for IsLocationInLocationList

* Seperate elements in NoTLSRedirectLocations by comma

* Set NoTLSRedirectLocations to "/.well-known/acme-challenge/" by default

* Remove trailing slash from "/.well-known/acme-challenge" default
2018-03-18 17:44:59 -03:00
Oilbeater
5c02d700cb Allow config to disable geoip (#2202)
For a offline or private cloud environment, geoip is not needed.
Implementing https://github.com/kubernetes/ingress-nginx/issues/2179
2018-03-18 13:30:05 -03:00
Oilbeater
41cefeb178 Add worker-cpu-affinity nginx option (#2201)
worker_cpu_affinity is a common optimization method for improving nginx performance, adding this as a custom configuration. Also fix some format issues found during editing.
2018-03-16 13:32:45 -03:00
Elvin Efendi
36cce00fdd configuring load balancing per ingress (#2167)
* configure load balancing through a ingress annotation

* update docs
2018-03-09 13:09:41 -08:00
maxlaverse
31306658f1 Add documentation about secure-verify-ca-secret (#2169) 2018-03-05 11:01:50 -08:00
Qiu Jian
56036ddc57 Add publish-status-address flag (#2148)
* Add publish-status-address flag

If this flag is set, status of ingress resources will be updated
with this address.

* Address aledbf's comment
2018-02-27 00:02:19 -03:00
Manuel Alejandro de Brito Fontes
0dee303ac2
Add annotation to disable logs in a location (#2144) 2018-02-25 11:38:54 -03:00
Thanatat Tamtan
309a79483f fix limit-req-status-code doc (#2133) 2018-02-22 11:39:16 -08:00
nrmitchi
a4874806f2 Update configmap.md (#2124) 2018-02-21 11:09:32 -08:00
Victor Trac
131fdf1e01 replace '&#8209;' with actual dashes '-' (#2111) 2018-02-16 15:02:41 -08:00
Mathieu Parent
b02c0f502a Fix proxy_redirect description (#2102) 2018-02-16 09:59:12 -08:00
Bea
f468007d6c Updates and extends client cert documentation (#2105)
Updates and extends the documentation about enabling client certificate authentication.
2018-02-16 07:17:29 -08:00
Oilbeater
7ede78f004 fix spell error reslover -> resolver (#2041) 2018-02-07 07:24:09 -08:00
Oilbeater
36acee29ff fix wrong annotation (#2040) 2018-02-07 07:23:41 -08:00
Luke Jolly
42076e8ed0 Added configmap option to disable IPv6 in nginx DNS resolver (#1992) 2018-02-02 11:53:28 -08:00
Karl Stoney
aa59c53fc6 Added documentation for Permanent Redirect (#2018) 2018-02-01 09:05:05 -08:00
Qiu Jian
c1d541c783 Add document for connection-proxy-header annotation (#2014) 2018-02-01 02:46:25 -08:00
Anish Ramasekar
d7ef6b3fc7 Add support for enabling ssl_ciphers per host (#2006)
* Add support for adding ssl_ciphers

* Add documentation
2018-01-31 08:53:07 -08:00
Jonathan Boulle
8bdb5e42f2 docs/user-guide/tls: remove duplicated section (#2009) 2018-01-31 08:43:22 -08:00
qiupeng-huacloud
c2cbcf7a58 fix typo error for server name _ (#2005)
Signed-off-by: qiupeng-huacloud <qiupeng@chinacloud.com.cn>
2018-01-31 08:42:36 -08:00
Anish Ramasekar
2f700a9ad5 Add limit-request-status-code option (#2001)
* Add support for limit_req_status

* Add documentation

* Fix comment
2018-01-30 07:24:44 -06:00
Anish Ramasekar
b020686599 Add support to enable/disable proxy buffering (#1998)
* Enable proxy buffering using configmap and annotation

* add documentation
2018-01-29 08:43:55 -06:00
Fernando Diaz
d1ae7ff29c Enable Customization of Auth Request Redirect (#1993)
Adds the 'nginx.ingress.kubernetes.io/auth-request-redirect'
annotation, which allows the customization of the
'X-Auth-Request-Redirect' Header. Fixes: #1979
2018-01-27 21:32:08 -03:00
Manuel Alejandro de Brito Fontes
efec983ed4
Add comment about bolean and number values (#1991) 2018-01-26 16:36:12 -03:00
Manuel Alejandro de Brito Fontes
c67e9185b6
By default brotli is disabled (#1970) 2018-01-24 10:01:37 -03:00
Karl Stoney
8ee694164f Added annotation for upstream-vhost (#1953)
https://github.com/kubernetes/ingress-nginx/issues/1950
2018-01-23 08:20:53 -03:00
Mike Rostermund
e02b5e3876 Remove part of misplaced non-breaking hyphen (#1935) 2018-01-19 18:29:30 -02:00
Manuel Alejandro de Brito Fontes
8975800740
Add support to hide headers from upstream servers (#1928) 2018-01-18 16:37:22 -02:00
Manuel Alejandro de Brito Fontes
5a16a7aaa0
Fix doc links (#1925)
* Fix documentation links
* Replace external-traffic annotation
* Update awesome_bot docker image
2018-01-18 13:30:29 -02:00
Manuel Alejandro de Brito Fontes
28058f0edc
Add support for jaeger backend (#1916) 2018-01-17 19:28:59 -02:00