Skip to content

Issue: Configuring Microsoft OIDC with TLS Termination at External LB and DeployKF without SSL (tls.enabled=false) #76

Discussion options

You must be logged in to vote

@ehtishammubarik You should try and get your outer LoadBalancer Proxy working when deploykf_core.deploykf_istio_gateway.gateway.tls.enabled is true, rather than disabling TLS at the gateway level (which also tells oauth2-proxy to present itself as HTTP).

First, it is important to understand that deployKF will always redirect HTTP traffic to HTTPS when ...tls.enabled is true, read more about the implications of this in the "TLS Termination" note on this page.

The issue in your case is probably that your outer LoadBalancer Proxy is trying to talk to deployKF over HTTP, and is being redirected to HTTPS which is preventing traffic from reaching the gateway.

For example, if you are using Cloud…

Replies: 1 comment

Comment options

You must be logged in to vote
0 replies
Answer selected by thesuperzapper
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
2 participants