-
Notifications
You must be signed in to change notification settings - Fork 688
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Feature request: support external TLS with HTTP 301 upgrades #715
Comments
We recently switched from zalando/kube-ingress-aws-controller + zalando/skipper to zalando/kube-ingress-aws-controller + heptio/contour. Currently setting Would there be a simple way to check for Ideally, the logic of creating external LB and setting the ingress status remains de-coupled from contour to have maximum flexibility. I love how it works right now. Here are some details why someone might want to use
I do not think I can achieve the same with Kubernetes Looking forward to your thoughts and comments |
Switching to NLBs due to bugs in ALB, this is of lower priority for me now |
other ppl reported this bug here - envoyproxy/envoy#4496 (comment) |
The Contour project currently lacks enough contributors to adequately respond to all Issues. This bot triages Issues according to the following rules:
You can:
Please send feedback to the #contour channel in the Kubernetes Slack |
The Contour project currently lacks enough contributors to adequately respond to all Issues. This bot triages Issues according to the following rules:
You can:
Please send feedback to the #contour channel in the Kubernetes Slack |
Currently Contour configures Envoy to handle TLS directly on port 8443. If this is enabled then a second option to issue 301 redirects from port 8080 to port 8443 is available, via an annotation on Ingress, and automatically via IngressRoute.
Currently it is not possible to configure contour to both issue 301 upgrades to HTTP requests and have TLS managed externally (say an ELB managed by a cloud provider). We should look into making this possible.
The text was updated successfully, but these errors were encountered: