Skip to content
This repository has been archived by the owner on Oct 29, 2021. It is now read-only.
/ waf-syncer Public archive

A thing that syncs Istio VirtualServices/Gateways to WAF

0 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

evry-ace/waf-syncer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

41 Commits
.idea
.idea
 
 
cmd/waf-syncer
cmd/waf-syncer
 
 
hack
hack
 
 
pkg
pkg
 
 
tools
tools
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
Jenkinsfile
Jenkinsfile
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
ace.yaml
ace.yaml
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
renovate.json
renovate.json
 
 

Repository files navigation

Prerequisites

Create a Azure SP that has Owner level permissions to the desired WAF instance. Then create a secret on the cluster that is going to run the director.

kubectl create secret generic -n kube-system ace-waf-director \
    --from-literal="client_id=$AZURE_CLIENT_ID" \
    --from-literal="client_secret=$AZURE_CLIENT_SECRET" \
    --from-literal="tenant_id=$AZURE_TENANT_ID" \
    --from-literal="subscription_id=$AZURE_SUBSCRIPTION_ID"

Use the helm chart to install it into k8s.

Inspiration for http redirect

Azure/application-gateway-kubernetes-ingress#132

About

A thing that syncs Istio VirtualServices/Gateways to WAF

Topics

tls kubernetes golang ssl azure istio azure-application-gateway cert-manager

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

6 watching

Forks

2 forks
Report repository

Releases

3 tags

Packages

No packages published

Contributors 2

  •  
  •  

Languages