I am attempting to use an Authenticating Proxy with version 1.5.1 and am having no luck. I wrote my own proxy and am passing the user id in X-REMOTE-USER. My API server has the following relevant settings
--requestheader-user-headers=X-REMOTE-USER --requestheader-client-ca-file=<my ca file> --authorization-mode=AlwaysAllow --anonymous-auth=false --audit-log-path=<mylog> NO matter what i try, I always get 'Unauthorized' back from the apiserver. I know my client-ca file is okay because I use the same file when running with x509 certification and everything works fine. To make sure that I wasn't dropping the header somehow in my java app, I used curl and still got Unauthorized. I turned my server verbosity up to 8 but all I can see in the log is my request uri with a 401 status code. Nothing shows up in the audit log Not sure what else to try, any help would be appreciated. -- You received this message because you are subscribed to the Google Groups "Kubernetes user discussion and Q&A" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/kubernetes-users. For more options, visit https://groups.google.com/d/optout.
