Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add TLS Docs #3012

Merged
merged 2 commits into from Mar 15, 2018
Merged

Add TLS Docs #3012

merged 2 commits into from Mar 15, 2018

Conversation

dtomcej
Copy link
Contributor

@dtomcej dtomcej commented Mar 14, 2018

What does this PR do?

Adds a note about how to enable TLS communication in k8s to backend pods.

Motivation

Resolves #3008

More

  • Added/updated documentation

@dtomcej dtomcej requested a review from a team as a code owner March 14, 2018 15:34
@traefiker traefiker added this to the 1.5 milestone Mar 14, 2018
@kachkaev
Copy link
Contributor

kachkaev commented Mar 14, 2018
edited

Thanks for this addition @dtomcej – It'd really help me a few months back when I was figuring out things. WDYT of adding one sentence on how to get started with obtaining trusted backend certs? A link to a help section or a tutorial would be ideal.

@dtomcej
Copy link
Contributor Author

dtomcej commented Mar 14, 2018

@kachkaev I'm unsure if that would be wise, due to the fact that there are many different ways to get trusted certs, and they are environment specific. I am hesitant to suggest one method, as it anything specific that is suggested may be unsuitable for a large portion of users.

@dtomcej
Copy link
Contributor Author

dtomcej commented Mar 14, 2018

Ideally, if you are managing the cluster, you could generate your own certs, and use the k8s CA to sign them (therefore making them trusted), but we can't assume that users have access to the cluster CA keys to sign with. There are also many users that use third party cert tools to handle this.

@timoreimann thoughts?

@timoreimann
Copy link
Contributor

I agree that we need to be careful about what we recommend in our documentation. For instance, our Kubernetes guide is often misinterpreted as providing production-level advice despite several warnings and notes left for quite some time.

We still have our awesome Traefik wiki list though where we could add community contributions.

juliens
juliens approved these changes Mar 15, 2018
View reviewed changes
Copy link
Member

@juliens juliens left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

mmatur
mmatur approved these changes Mar 15, 2018
View reviewed changes
Copy link
Member

@mmatur mmatur left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@timoreimann
Copy link
Contributor

trying to hold back the bot for some final styling improvements by @nmengin .

@mmatur mmatur added the kind/enhancement a new or improved feature. label Mar 15, 2018
@traefiker traefiker merged commit 35b8367 into traefik:v1.5 Mar 15, 2018
@traefiker traefiker mentioned this pull request Mar 15, 2018
Closed
@gozer gozer mentioned this pull request Apr 11, 2018
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@juliens juliens juliens approved these changes

@timoreimann timoreimann timoreimann approved these changes

@mmatur mmatur mmatur approved these changes

Assignees
No one assigned
Labels
area/documentation area/provider/k8s/ingress kind/enhancement a new or improved feature. size/S
Projects
None yet
Milestone
1.5
Development

Successfully merging this pull request may close these issues.

None yet
8 participants
@dtomcej @kachkaev @timoreimann @juliens @mmatur @ldez @nmengin @traefiker