Open ebocchi opened 2 years ago
What do you mean by SWAN oauthenticator
? If EOS can ignore the certificate, we can very much easily add a flag in our authenticator and go for the less secure, just for local test, easy way.
With Traefik and Let's Encrypt it is very easy to do certs-aaS if you have a suitable domain and a way to programmatically control that domain (e.g. Cloudflare or PowerDNS).
We will not have a good certificate a-priory.
This causes problems:
/userinfo
endpointRequire good certificate (hard), or make the default nginx ingress accepted, or ignore TLS when deploying on single box.