Commit graph

43 commits

Author SHA1 Message Date
97fe2c8150
Merge branch 'master' of github.com:traefik/traefik
Signed-off-by: baalajimaestro <me@baalajimaestro.me>
2023-03-24 17:35:34 +05:30
Fernandez Ludovic
7875826bd9 Merge branch v2.10 into v3.0 2023-03-21 16:45:33 +01:00
Romain
807feef176
Include user-defined default cert for traefik_tls_certs_not_after metric
Co-authored-by: Mathieu Lonjaret <mathieu.lonjaret@gmail.com>
2023-02-23 16:14:06 +01:00
5e67c31ca3
Merge branch 'v3.0' of github.com:traefik/traefik 2023-02-17 10:26:37 +05:30
Ludovic Fernandez
044dc6a221
fix: go module 2023-02-03 15:24:05 +01:00
ab4ec9a63a
xMerge github.com:traefik/traefik
Signed-off-by: baalajimaestro <me@baalajimaestro.me>
2022-12-08 20:48:02 +05:30
Tom Moulard
517917cd7c
Merge current v2.9 into master 2022-12-07 15:55:46 +01:00
mpl
7e3fe48b80
Handle broken TLS conf better
Co-authored-by: Jean-Baptiste Doumenjou <925513+jbdoumenjou@users.noreply.github.com>
Co-authored-by: Romain <rtribotte@users.noreply.github.com>
2022-12-06 18:28:05 +01:00
0fffd1cb26
Merge github.com:traefik/traefik
Signed-off-by: baalajimaestro <me@baalajimaestro.me>
2022-11-25 13:01:22 +05:30
Ludovic Fernandez
56f7515ecd
New logger for the Traefik logs 2022-11-21 18:36:05 +01:00
b77524eadc
Refactor getDefaultCertificate to use CertificateData
Signed-off-by: baalajimaestro <me@baalajimaestro.me>
2022-10-23 12:55:43 +05:30
Alessandro Chitolina
5b6bd07de8
fix ocsp stapling always disabled 2022-10-23 10:56:20 +05:30
Alessandro Chitolina
05e36e3136
rename certificate runtime data struct
baalajimaestro: Forward port for v2.9+

Signed-off-by: baalajimaestro <me@baalajimaestro.me>
2022-10-23 10:55:59 +05:30
Alessandro Chitolina
3ae0b9342b
split certificate config from runtime structures
baalajimaestro: Forward port for v2.9+

Signed-off-by: baalajimaestro <me@baalajimaestro.me>
2022-10-23 10:53:05 +05:30
Alessandro Chitolina
b82f7f6a44
ocsp stapling working
baalajimaestro: Forward ported to v2.9+

Signed-off-by: baalajimaestro <me@baalajimaestro.me>
2022-10-23 10:40:35 +05:30
Romain
a002ccfce3
ACME Default Certificate
Co-authored-by: Ludovic Fernandez <ldez@users.noreply.github.com>
Co-authored-by: Julien Salleyron <julien.salleyron@gmail.com>
2022-09-13 20:34:08 +02:00
Douglas De Toni Machado
c84378d649
Change default TLS options for more security 2022-09-08 10:56:08 +02:00
Ludovic Fernandez
45453b20fa
chore: update to go1.19 2022-08-09 17:36:08 +02:00
Maxence Moutoussamy
e642365613
Fix panic when getting certificates with non-existing store
Co-authored-by: Tom Moulard <tom.moulard@traefik.io>
2022-05-19 17:12:08 +02:00
Romain
0f29e893f4
Return TLS unrecognized_name error when no certificate is available 2022-03-28 18:18:08 +02:00
Romain
2644c1f598
Makes ALPN protocols configurable 2021-08-20 18:20:06 +02:00
Richard Kojedzinszky
f15d05b22f
tls Manager: do not build a default certificate for ACME challenges store
Co-authored-by: Mathieu Lonjaret <mathieu.lonjaret@gmail.com>
Co-authored-by: Romain <rtribotte@users.noreply.github.com>
2021-06-14 10:06:05 +02:00
Sylvain Rabot
a3327c4430
Add TLS certs expiration metric 2020-12-18 18:44:03 +01:00
Ludovic Fernandez
05333b9579
acme: new HTTP and TLS challenges implementations. 2020-10-29 15:40:04 +01:00
Ludovic Fernandez
d2435cf43b
fix: restrict protocol for TLS Challenge. 2020-10-08 13:34:04 +02:00
Jean-Baptiste Doumenjou
c0f1e74bed
chore: move to Traefik organization.
Co-authored-by: Romain <rtribotte@users.noreply.github.com>
2020-09-16 15:46:04 +02:00
Ludovic Fernandez
41aa2672cd
Update go-acme/lego to v4.0.1 2020-09-04 10:52:03 +02:00
Ludovic Fernandez
a20e90aa17
chore: update linter. 2020-07-07 14:42:03 +02:00
Ludovic Fernandez
328611c619
Update linter 2020-05-11 12:06:07 +02:00
Daniel Tomcej
7c430e5c9d
Allow PreferServerCipherSuites as a TLS Option 2020-02-12 18:06:04 +01:00
Ludovic Fernandez
424e2a9439 Add internal provider
Co-authored-by: Julien Salleyron <julien.salleyron@gmail.com>
2019-11-14 16:40:05 +01:00
Kelvin Sarink
5a3e325742 Add tls option for Elliptic Curve Preferences 2019-11-03 15:54:04 +01:00
kmeekva
1f39083555 Add support for MaxVersion in tls.Options 2019-10-29 12:58:05 +01:00
Ludovic Fernandez
8e18d37b3d fix: logger and context. 2019-09-13 19:28:04 +02:00
Fernandez Ludovic
4c5e7a238d chore: go module 2019-08-12 05:06:04 -07:00
Ludovic Fernandez
f75f73f3d2 Certificate resolvers.
Co-authored-by: Julien Salleyron <julien.salleyron@gmail.com>
Co-authored-by: Jean-Baptiste Doumenjou <jb.doumenjou@gmail.com>
2019-07-19 11:52:04 +02:00
Jean-Baptiste Doumenjou
2c7cfd1c68 Expand Client Auth Type configuration 2019-07-12 17:50:04 +02:00
Ludovic Fernandez
4245096be4 Define a TLS section to group TLS, TLSOptions, and TLSStores.
Co-authored-by: Jean-Baptiste Doumenjou <jb.doumenjou@gmail.com>
2019-06-27 23:58:03 +02:00
Jean-Baptiste Doumenjou
80b35575df Define TLS options on the Router configuration for Kubernetes
Co-authored-by: juliens <julien@containo.us>
2019-06-21 17:18:05 +02:00
Julien Salleyron
69cf05df9a Fix panic in tls manager 2019-06-21 16:32:04 +02:00
Jean-Baptiste Doumenjou
85ce16b34f Define TLS options on the Router configuration
Co-authored-by: juliens <julien@containo.us>
2019-06-17 18:14:08 +02:00
mpl
ea750ad813 Improve log message about redundant TLS certificate 2019-04-17 10:38:04 +02:00
Ludovic Fernandez
f1b085fa36 Move code to pkg 2019-03-15 09:42:03 +01:00
Renamed from tls/tlsmanager.go (Browse further)