k8 by examples
matthewdavis.io
Search…
k8
k8-byexamples-monorepo
AWS to GCP Proxy
Ingress + TLS Termination
Docker
HAproxy
Troubleshooting
Windows
Commands
Kubernetes Specs
Namespaces
Deployments
InitContainers
Ingress
Services
Storage
Tools
kubectl
Port Scanning
Resources
Curated Resources List
Community
Contact Me
Ingress Controller + LetsEncrypt
K8-BYEXAMPLES
IngressController+LetsEncrypt
Powered By GitBook
Ingress
Be careful when thinking about an "Ingress Resource"! This should not be confused with the actual "Ingress Controller", which is just a pod running nginx that performs traffic routing as if you were performing a bunch of re-writes.

Ingress with SSL & Basic Auth

Setting up Basic Auth is pretty straightforward as you only need to generate the htpasswd token and create the kubernetes secret before creating your ingress resource. If the htpasswd command isn't present on your machine you can install it with apt-get install apache2-utils.

Create credentials file & kubernetes secret

create-secret.sh
1
htpasswd -cb auth $(USERNAME) $(PASSWORD)
2
kubectl create secret generic "nginx-ingress-basic-auth" --from-file="auth"
3
The secret created will look like this:
4
apiVersion: v1
5
kind: Secret
6
metadata:
7
name: nginx-ingress-basic-auth
8
type: Opaque
9
data:
10
auth: dXNlcjp5LWJhc2g1LkQuRlJTdDlvU0tieDByN2pFaXJiaHEuSmNLaUZScUJWRw==
Copied!

Create the ingress resource

1
apiVersion: extensions/v1beta1kind: Ingressmetadata: name: <hostname> annotations: kubernetes.io/ingress.class: "nginx" nginx.ingress.kubernetes.io/auth-type: basic nginx.ingress.kubernetes.io/auth-secret: nginx-ingress-basic-auth nginx.ingress.kubernetes.io/auth-realm: "Authentication Required - foo"spec: tls: - hosts: - <hostname> secretName: <tls secret name> rules: - host: $HOST http: paths: - path: /service-a backend: serviceName: my-service-a servicePort: 80 - path: /service-b backend: serviceName: my-service-b servicePort: 80
Copied!

Ingress with Sticky Sessions

1
apiVersion: extensions/v1beta1 kind: Ingressmetadata: name: nginx-test-sticky annotations: kubernetes.io/ingress.class: "nginx" ingress.kubernetes.io/affinity: "cookie" ingress.kubernetes.io/session-cookie-name: "route" ingress.kubernetes.io/session-cookie-hash: "sha1"spec: rules: - host: $HOST http: paths: - path: / backend: serviceName: $SERVICE_NAME servicePort: $SERVICE_PORT
Copied!
Kubernetes Specs - Previous
InitContainers
Next - Kubernetes Specs
Services
Last modified 3yr ago
Copy link
Contents
Ingress with SSL & Basic Auth
Create credentials file & kubernetes secret
Create the ingress resource
Ingress with Sticky Sessions