James Peach
James Peach
> On Jan 3, 2020, at 3:59 AM, Laurent Rouquette wrote: > > I'm just saying that is one way to reproduce. The root of the problem is that Contour...
> On Jan 4, 2020, at 9:12 AM, Laurent Rouquette wrote: > > Happy to see ADS in the picture though, thats' awesome! If this reproduces in your deployment, I...
xref #2515 which is closely related
Yup, that looks promising. xref #1898
I wasn't planning on it, but after #1714 we will only take CA bundles from secrets with no type, or of type "opaque" or "kubernetes.io/tls". I think we need to...
Document this per #1415
@davecheney We chatted about this on slack. If we want to require that `HTTPProxy` validation uses only CA bundles from `projectcontour.io/ca-certificate` secrets, then we should do that now (preferably for...
Here's my proposal: 1. Retain existing semantics for `IngressRoute` 2. Add support for a new Secret of type `projectcontour.io/ca-certificate`. The semantics of this secret are that you can have any...
Discussed with @davecheney, and clarified that the spurious DAG rebuild is the primary problem that we are trying to address here. I think that we can improve that without introducing...
Similar underlying use cases as https://github.com/projectcontour/contour/issues/2888