Skip to content

Commit

Permalink
test
Browse files Browse the repository at this point in the history
  • Loading branch information
@akurilov
akurilov committed Nov 24, 2023
1 parent 1eb81d1 commit 10c0a1a
Show file tree
Hide file tree
Showing 4 changed files with 6 additions and 24 deletions.
19 changes: 2 additions & 17 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,20 +4,5 @@ Reference Web UI

## 1. Usage

Uses 2-factor authentication:
1. Client TLS certificate.
2. External identity provider (Google OAuth2 currently).

Steps to access:
1. Install the [CA](https://awakari.com/certs/awakari-demo-ca.crt).
2. Install the [client certificate](https://awakari.com/certs/awakari-demo-client-0.p12).
3. Navigate https://demo.awakari.cloud/web

## 2. Convert own certificate

Converting the client certificate for the browser/mobile phone usage:
```shell
openssl pkcs12 -export -in client.crt -inkey client.key -out client.p12
openssl pkcs12 -nodes < client.p12 > /tmp/certbag.pem
openssl pkcs12 -export -legacy -in /tmp/certbag.pem > client.legacy.p12
```
Uses an external identity provider (Google OAuth2 currently).
Navigate https://awakari.cloud
3 changes: 0 additions & 3 deletions helm/webapp/templates/ingress.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,9 +24,6 @@ metadata:
nginx.ingress.kubernetes.io/rewrite-target: /$2
nginx.ingress.kubernetes.io/ssl-redirect: "true"
nginx.ingress.kubernetes.io/force-ssl-redirect: "true"
nginx.ingress.kubernetes.io/auth-tls-verify-client: "on"
nginx.ingress.kubernetes.io/auth-tls-secret: "{{ .Release.Namespace }}/{{ .Values.ingress.tlsCa.secretName }}"
nginx.ingress.kubernetes.io/auth-tls-verify-depth: "1"
spec:
{{- if and .Values.ingress.className (semverCompare ">=1.18-0" .Capabilities.KubeVersion.GitVersion) }}
ingressClassName: {{ .Values.ingress.className }}
Expand Down
6 changes: 3 additions & 3 deletions helm/webapp/values-demo-0.yaml
View file
Original file line number Diff line number Diff line change
@@ -1,10 +1,10 @@
ingress:
hosts:
- host: demo.awakari.cloud
- host: awakari.cloud
paths:
- path: /web(/|$)(.*)
- path: /
pathType: ImplementationSpecific
tls:
- secretName: secret-api-tls-server
hosts:
- demo.awakari.cloud
- awakari.cloud
2 changes: 1 addition & 1 deletion helm/webapp/values.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -44,7 +44,7 @@ ingress:
hosts:
- host: webapp.local
paths:
- path: /web(/|$)(.*)
- path: /
pathType: ImplementationSpecific
tlsCa:
secretName: secret-api-tls-ca
Expand Down

0 comments on commit 10c0a1a

Please sign in to comment.