#MASTER VOYAGER ACTIVATION CODE VERIFICATION#
X-SSL-Client-CN: "%" # Add headers to Request based on SSL verification X-SSL: "%",īackend server will receive Headers X-SSL and X-SSL-Client-CN. SecretName: server verif圜lient: required errorPage: "" headers: Name: hello-basic-auth namespace: default spec: Send a invalid clinet certificate, that will redirect to error page if provided: $ curl -v -s -key invalidclient.key -cert invalidclient.crt īasic Auth can also be configured per frontend in voyager ingress via FrontendRules. Send a valid clinet certificate: $ curl -v -s -key client.key -cert client.crt * error:14094410:SSL routines:SS元_READ_BYTES:sslv3 alert handshake failureĬurl: (35) error:14094410:SSL routines:SS元_READ_BYTES:sslv3 alert handshake failure * SSLv3, TLS change cipher, Client hello (1): * SSLv3, TLS handshake, Client key exchange (16): * SSLv3, TLS handshake, Server finished (14): * SSLv3, TLS handshake, Request CERT (13): * SSLv3, TLS handshake, Server key exchange (12): * SSLv3, TLS handshake, Server hello (2): * SSLv3, TLS handshake, Client hello (1): * successfully set certificate verify locations: Test without certificates: $ curl -i -vvv ''
auth-tls-secret: ca /auth-tls-verify-client: required /auth-tls-error-page: "" name: hello-tls-auth namespace: default spec: /auth-tls-verify-client: Enables verification option of client certificates.Ĭreate tls secret for enable ssl termination: $ kubectl create secret tls server -cert=/path/to/cert/file -key=/path/to/key/fileĬreate ca cert secret: $ kubectl create secret generic ca -from-file=/path/to/ca.crtĬreate an Ingress with TLS Auth annotationsĪpiVersion: /v1beta1 kind: Ingress metadata:.
#MASTER VOYAGER ACTIVATION CODE HOW TO#
This example demonstrates how to configure TLS Authentication on Voyager Ingress controller.īefore diving into the deep learn about TLS Auth with HAproxy.
0 kommentar(er)
