This repository has been archived by the owner on Feb 16, 2019. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 9
[Ingress] Support for Mutual TLS with external clients #50
Labels
Comments
Any update on this? |
Hi , We also would like this feature , any update? |
mesh expansion is an example - basically you just need a cert signed by the istio CA cc @wattli |
@ldemailly mesh expansion examples seems to be focusing on external vms , but will it work with external kubernetes cluster ? |
multiple clusters support is in the works for 1.0 |
You can also use mTLS with non Istio certs using the new Gateway API. Please test this behavior with the 0.8 APIs and re-open this issue if that doesn't meet your needs. See https://istio.io/docs/reference/config/istio.networking.v1alpha3/#Gateway |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
@schmitzhermes commented on Thu May 25 2017
It would be great to support mutual TLS with Ingress clients.
A working example can be found in nginx ingress controller: https://github.com/kubernetes/ingress/blob/master/controllers/nginx/configuration.md#certificate-authentication
This should not be confused with mutual TLS inside your cluster (i.e. service-to-service communication) -> that's what https://github.com/istio/auth is for.
@rshriram commented on Mon May 29 2017
Hi,
Can you please post this issue on istio/issues repo? We are keeping track of all bugs and feature requests in that repo. The issues here are for our internal tracking purposes.
The text was updated successfully, but these errors were encountered: