ingress-nginx

ingress-nginx copied to clipboard

Allow forwarding headers from `auth_request` without flattening

3

Currently, ingress-nginx flattens multiple occurrences of the same header returned by `auth_request` into a single header with comma-separated values. This behavior prevents proper forwarding of multiple headers with the same...

aslafy-z

Does Ingress Support Proxy Service Certificate Verification?

3

**What happened**: Server certificate verification is configured on the ingress, but the ingress fails to verify the server certificate. The annotation is as follows in ingress: **nginx.ingress.kubernetes.io/proxy-ssl-secret: fst-manage/tenant-management-service-server nginx.ingress.kubernetes.io/proxy-ssl-verify: "on"**...

heijian123

when the service targetPortport changes, the ingress cannot detect the change and adjust the upstream port.

11

**What happened**: At first, I used the wrong targetPort in the service, created the associated ingress but could not be accessed, so I fixed the targetPort of the service. I...

zzzzoy

Support Custom Key for Authentication Secret

2

Currently, the NGINX Ingress Controller requires the basic authentication secret to have the key auth. However, some environments enforce strict secret structures where the authentication data is stored under a...

gkoppura-github

return multiple IPs for nodes when reporting ingress status

12

## What this PR does / why we need it: When reporting a node's IP into an Ingress' status, currently ingress-nginx only reports the first IP. In particular, this makes...

akdor1154

fix non tls ingress still able to listen on a https port

9

## What this PR does / why we need it: In the ingress resource if tls section is not defined, then the current behaviour of the controller is to expose...

izanami-01

support 2 tier control over sticky_persistent sessions

5

## What this PR does / why we need it: Better control over the balancing logic of `sticky_persistent` when clients do not have a valid cookie value (or don't support...

travisghansen

Allow proxy-ssl-* annotations without proxy-ssl-secret

16

## What this PR does / why we need it: ## Types of changes - [x] Bug fix (non-breaking change which fixes an issue) - [ ] New feature (non-breaking...

tamalsaha

Allow specifying the name of the header for forwarding client certificates

11

## What this PR does / why we need it: Try to address #3511 . ## Types of changes - [ ] Bug fix (non-breaking change which fixes an issue)...

tuxillo

Add standard Forwarded header support

8

## What this PR does / why we need it: Add support of standard Forwarded defined by RFC 7239. Implement #10263 ConfigMap options: ```go // Enable standard forwarded header. //...

zitudu