Disabling TLS #162
Comments
|
Hi @FabioAntunes, disabling secure serving is not an option. You will need to either enable TCP pass through on your load balancer, or instead allow TLS communication from the LB -> Proxy. |
|
Thanks for the quick response, if disabling TLS is not an option is there a way to make this work with traefik? I'm getting the following:
That IP address is from one of my traefik pods. Any clues? Thanks in advance |
|
Sorry for the slow reply! You'll need to add the serving CA that kube-oidc-proxy is using, as a trusted CA to traefik. |
|
Hey @JoshVanL can I get a clarification. You mentioned that disabling tls is not an option. Did you mean it is currently supported by the project, because the flags/options haven't been implemented or is it because there is an underlying technical reason the api can't be exposed through pure http (other than security of course) for an external proxy to handle tls like @FabioAntunes mentions. I think that case is a pretty typical scenario |
|
+1 for this option |
Hey folks, is there a way to disable tls on the pod level?
I want my aws load balancer to be responsible for the tls, terminating the tls and inside the cluster I just want to use http.
The text was updated successfully, but these errors were encountered: