Skip to content

Instantly share code, notes, and snippets.

View torrybr's full-sized avatar
🌴
On vacation

torrybr

🌴
On vacation
8 followers · 16 following
View GitHub Profile
@torrybr
torrybr / default.conf.template
Created May 18, 2025 13:30 — forked from gregoiredx/default.conf.template
Nginx configured as a third party internal gateway proxy with cache
# To be use with https://hub.docker.com/_/nginx or https://hub.docker.com/r/nginxinc/nginx-unprivileged
# COPY this file to /etc/nginx/templates/default.conf.template
# For env var substitution, see "Using environment variables in nginx configuration" at https://hub.docker.com/_/nginx
# Example values:
# environment:
# - CACHE_FILES_PATH=/mnt/cache
# - CACHE_FILES_MAX_SIZE=1g
# - CACHE_MEMORY_SIZE=10m
# - CACHE_VALID_TIME=1m
@torrybr
torrybr / traefik.md
Last active October 23, 2022 17:57
Traefik Ingress Controller for Kubernetes w/ PKI Authentication + TLS 🔐

Traefik Ingress Controller for Kubernetes w/ PKI Authentication + TLS 🔐

This is a short guide for setting up traefik inside of a rancher kubernetes environment with client pki authentication enabled. This allows us to only grant access to specific people who have been issued a pki certificate that was signed by our Certificate Authority. In this guide we will walk through the following

  • Creating a private CA + Client Certificates for PKI Authentication
  • Generating Custom SSL Certificates
  • Installing Traefik via helm chart
  • Configuring Traefik for custom ssl and client authentication
  • Adding IngressRoutes to the kubernetes cluster
  • Passing Client Certificate information to downstream apis via middlewares