Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
New flag "-ssl-upstream-insecure-skip-validation" #234
New flag to skip SSL validation for upstreams with self generated / invalid SSL certificates.
Motivation and Context
Upstream with self-signed certificate (such as default kubernetes dashboard deployment) should work if oauth2-proxy.
How Has This Been Tested?
Setup an oauth2_proxy for a Kubernetes dashboard as described in Issue #75, produced the errors as mentioned without the new flag, works setting the flag.
Just a thought on this, why do we need to add a new flag? Can we not just pass the
We want to validate the SSL certificate of our OIDC provider, which has an official certificate and can be validated and treated as secure. But the upstreams in our Kubernetes Cluster have self signed certs, so validation need to be skipped for them.