Issues with SSL verification of proxies
Some issues thrown up during testing of #2121:
- support DN instead of only CN, since nginx can't pass just the CN
- empty CN shouldn't be accepted
- change from rDNS of request IP to forward DNS of smart proxies?
- support headers instead of env vars?
#1 Updated by Dominic Cleal about 7 years ago
- Status changed from New to Ready For Testing
- Target version set to 1.1
I was going to change the rDNS scheme as well, but decided that I'll mention it in my e-mail to foreman-users to get feedback (will send as soon as the installer PR's merged).