ingress-controller
ingress-controller copied to clipboard
pomerium
Pomerium Kubernetes Ingress Controller
in fact, we _used to_ merge with current settings, but we don't anymore. as a follow-up we should update the applySettings function to explicitly return a new pb.Settings rather then...
## Summary Adds support for prometheus resources to be composed into a pomerium deployment using the kustomize `components` feature. ## Background The current resources can be composed as kustomize `resources`...
## Summary adds annotations to support Istio deployment ## Related issues ## Checklist - [ ] reference any related issues - [ ] updated docs - [ ] updated unit...
**Is your feature request related to a problem? Please describe.** I would like to apply the `ingress.pomerium.io/preserve_host_header` annotation to all Ingress objects by default to make Pomerium act more consistently...
## Summary Since v0.22.0 IdP setup is not required for startup, and may be omitted to use hosted authenticate service. That means the one-time job that generates initial bootstrap secrets...
See #696 This is far from done. I tested it and quickly ran into issues with cert-manager: ``` {"level":"error","time":"2023-07-19T13:12:34Z","msg":"looking up info for HTTP challenge","service":"autocert","host":"test.example.com","error":"no information found to solve challenge for...
Currently, we automatically redirect from port 80 to 443. That causes HTTP01 cert-manager challenges to fail if client CA is configured. This is unfortunately non trivial to change, as all...
I was in the process of switching over from traefik solely to get client side mTLS (with crl support) running on our ops cluster. Now that everything is running and...
add prettier step for reference.md in the docs action in the origin `pomerium/ingress-controller` directory. _Originally posted by @wasaga in https://github.com/pomerium/documentation/pull/801#discussion_r1256278663_
**Is your feature request related to a problem? Please describe.** Currently, IC won't start if the certificates secrets referenced in the CRD do not exist. That creates an issue for...