From f61549a60f18eb0f1a829f0b2c48924949a473b0 Mon Sep 17 00:00:00 2001 From: Jens Langhammer Date: Sat, 12 Feb 2022 18:35:07 +0100 Subject: [PATCH] providers/proxy: enable TLS in ingress via traefik annotation Signed-off-by: Jens Langhammer #1997 --- authentik/providers/proxy/controllers/k8s/ingress.py | 2 ++ 1 file changed, 2 insertions(+) diff --git a/authentik/providers/proxy/controllers/k8s/ingress.py b/authentik/providers/proxy/controllers/k8s/ingress.py index 1d7f1fe07..db1429253 100644 --- a/authentik/providers/proxy/controllers/k8s/ingress.py +++ b/authentik/providers/proxy/controllers/k8s/ingress.py @@ -92,6 +92,8 @@ class IngressReconciler(KubernetesObjectReconciler[V1Ingress]): # Buffer sizes for large headers with JWTs "nginx.ingress.kubernetes.io/proxy-buffers-number": "4", "nginx.ingress.kubernetes.io/proxy-buffer-size": "16k", + # Enable TLS in traefik + "traefik.ingress.kubernetes.io/router.tls": "true", } annotations.update(self.controller.outpost.config.kubernetes_ingress_annotations) return annotations