Baklap4
commented
5 years ago @delqn Any idea how we can easily achieve this? Basic authentication shouldn't be a showstopper to use the application gateway imho..
Open PatricioDanos opened 5 years ago
Baklap4
commented
5 years ago @delqn Any idea how we can easily achieve this? Basic authentication shouldn't be a showstopper to use the application gateway imho..
PatricioDanos
commented
5 years ago I've ended up removing this ingress controller and using nginx with modsecurity. It would be nice to have this feature in this ingress controller though.
LucaPrete
commented
4 years ago Let me echo this. This is preventing us from using the application gateway controller where we do out at the edge.
What I'm personally looking at is the equivalent of these three annotations:
nginx.ingress.kubernetes.io/auth-tls-verify-client: "on"
nginx.ingress.kubernetes.io/auth-tls-verify-depth: "2"
nginx.ingress.kubernetes.io/auth-tls-secret: "XXX"Any plan to implement this?
akshaysngupta
commented
4 years ago @LucaPrete We are close on supporting mutual auth on Application Gateway. Once that is ready, we will work on exposing it through AGIC.
MarcelT-NL
commented
4 years ago @LucaPrete We are close on supporting mutual auth on Application Gateway. Once that is ready, we will work on exposing it through AGIC. @akshaysngupta Are you saying client certificates will be supported on Appplication Gateway? That would be really great...?
xs2bharat
commented
3 years ago @akshaysngupta Is there any update on exposing mutual auth through AGIC as i understand that application gateway do support mutual auth via SSL profiles?
jithin03
commented
3 years ago Does AGIC has this basic auth feature like what Nginx provides
dshakey
commented
3 years ago any update on this feature request?
sintetico82
commented
2 years ago Hello, still working in backlog?
josedev-union
commented
1 year ago @LucaPrete We are close on supporting mutual auth on Application Gateway. Once that is ready, we will work on exposing it through AGIC.
@akshaysngupta Could you update the progress here?
dash042
commented
9 months ago it has been a couple of years - what is going on? everything OK?
isujtauke
commented
9 months ago it has been a couple of years - what is going on? everything OK?
We transitioned all new sites to ingress-nginx due to things like this and app gateways having awful certificate limits.
dash042
commented
9 months ago it has been a couple of years - what is going on? everything OK?
We transitioned all new sites to ingress-nginx due to things like this and app gateways having awful certificate limits.
makes sense - I use Traefik for this and several other very good reasons but the customer thought the AppGW was a grand idea... :/
While doing our dev for our application, it's common for us to do some basic auth to protect access to it. Nginx ingress controller has Basic Auth as part of its solution by adding an htpasswd file as a secret, and a few annotations pointing to it. Here's the README.md for that implementation:
https://github.com/kubernetes/ingress-nginx/tree/master/docs/examples/auth/basic
Is it possible to implement something like this? This way we can secure access on a basic level until we implement a more robust authentication in our application code. This could also be a starting point to adding different authentication methos in the ingress controller, same as the nginx one.