-
Notifications
You must be signed in to change notification settings - Fork 1.2k
External redirect urls #461
base: master
Are you sure you want to change the base?
Conversation
If you're using Kubernetes with "external auth" in your nginx-ingress-controller, this how you configure it: First, the oauth2-proxy. It's important to set a correct
(instead of *, you can specify one domain, or specify this multiple times with multiple domains) In your app ingress files, specify:
This is unfortunately using the variables defined in the nginx-ingress-controller as it is right now. Better support should be added to it. |
fixes #456 |
The "any domain" |
@boivie in your example you set the I used to have a single instance with only these options, and that used to work with nginx-ingress-controller-0.9.0-beta.11:
|
Can this please be merged? Having a single oauth proxy in Kubernetes to protect various cluster sub-domains is my primary use case. I'd rather not have to make a bunch of ingresses with URL routing or something for each subdomain I want to protect. |
Actually after looking at #464 I think that better solves my issue because I would like a wildcard sub-domain rather than needing to edit the oauth proxy settings for each new ingress I want to protect. |
+1, plz merge to avoid having to use a fork |
I suggest the alternative implementation in #464 |
Allows having the oauth2_proxy at e.g. https://auth.example.com and using it for several of your domains, e.g. https://app1.example.com and https://app2.example.com
You will need to whitelist your domains, or set it to "*" to allow all your domains using "--redirect-domain"
Fixes #399 and #427