New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Redirecting all ingress http traffic to https #1377
Comments
I am also looking for a solution to this. I'm stripping ssl at the ELB and forwarding http to envoy - AWS ELBs always add a "x-forwarded-proto". In my previous setup using nginx ingress controller, it was simple enough to redirect to https based on this header like so:
It appears that headers are stripped before it gets to nginx, so the only option is to try the redirect at istio-ingress. I've tried applying ingress and rules like so:
Also tried various variations of this with no luck. How can we implement this? we need the ability to redirect with the captured uri (https://$host$request_uri; for example). |
cc @rshriram for a use case of route rule instead of ingress rule |
Automatic merge from submit-queue add locking to pod cache **What this PR does / why we need it**: PodCache has no mutex protecting its internal state. Add RWMutex to fix this. **Which issue this PR fixes** *(optional, in `fixes #<issue number>(, fixes #<issue_number>, ...)` format, will close that issue when PR gets merged)*: fixes istio#1377 **Special notes for your reviewer**: **Release note**: ```release-note Fix race in Pilot PodCache ```
With an ingress set as follows:
is there a way for a TLS ingress spec to not bind on 80 ? or if it binds on 80, how do I send traffic somewhere ? (this is with istio 0.4.0) |
As a workaround for istio/istio#1377 To be used in combo with ingress rules from istio/fortio-deployment#32
I found workarounds for the above issues. As well as making redirect work too using |
* Cloud transfer requires ETag * Adding a redirector to https on port 8081 As a workaround for istio/istio#1377 To be used in combo with ingress rules from istio/fortio-deployment#32
Any news on this one? |
This can now be easily done in Istio 0.8 by setting |
Automatic merge from submit-queue. Correct empty config proto type for authn filter
@charlesverdad commented on Mon Oct 16 2017
I am looking for a way to redirect all site visitors to the https version of my site. Something like http 301 or 302 redirect. I was told that envoy has built in support for this and we just need a way to configure that with istio.
Here's my current ingress resource for reference:
Related:
https://groups.google.com/forum/#!topic/istio-users/8SIWVX6ZSK4
The text was updated successfully, but these errors were encountered: