Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

insecure_skip_verify for upstream #1201

Open
5 tasks done
wei840222 opened this issue Nov 18, 2024 · 0 comments
Open
5 tasks done

insecure_skip_verify for upstream #1201

wei840222 opened this issue Nov 18, 2024 · 0 comments
Labels
feat New feature or request.

Comments

@wei840222
Copy link

Preflight checklist

Ory Network Project

No response

Describe your problem

In the company's own Kubernetes cluster, some applications such as Kibana use self-signed CA certificates to host HTTPS services. Since the environment is not public to the Internet, I want to directly trust these self-hosted HTTPS services.

Describe your ideal solution

add InsecureSkipVerify option in here https://github.com/ory/oathkeeper/blob/master/proxy/proxy.go#L77.

http.Transport{
  TLSClientConfig: &tls.Config{
    InsecureSkipVerify: true, // in cluster server certificate is not trusted.
}

Workarounds or alternatives

https://github.com/ory/oathkeeper/pull/1197/files

Version

v0.40.7

Additional Context

No response
@wei840222 wei840222 added the feat New feature or request. label Nov 18, 2024
@wei840222 wei840222 mentioned this issue Nov 18, 2024
Open
7 tasks
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
feat New feature or request.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@wei840222