a3aa3e6935
This adds additional SSL/TLS config to specify the acceptable TLS version, cipher suites, session cache, etc. Values are currently based on the Mozilla Foundation's recommendations for intermediate compatibility: https://wiki.mozilla.org/Security/Server_Side_TLS We will manage NGINX configuration snippets as a K8s ConfigMap so that they can be included in server blocks as-needed.
15 lines
323 B
YAML
15 lines
323 B
YAML
namespace: atat
|
|
resources:
|
|
- azure.yml
|
|
- uwsgi-config.yml
|
|
- atst-envvars-configmap.yml
|
|
- atst-nginx-configmap.yml
|
|
- atst-worker-envvars-configmap.yml
|
|
- crls-sync.yaml
|
|
- pgsslrootcert.yml
|
|
- volume-claim.yml
|
|
- nginx-client-ca-bundle.yml
|
|
- acme-challenges.yml
|
|
- aadpodidentity.yml
|
|
- nginx-snippets.yml
|