Ambassador · Schema
TLSContextSpec
Specification for a TLSContext resource
API DevelopmentGatewaysIngressKubernetesMock ServersMocksPlatformTesting
Properties
| Name | Type | Description |
|---|---|---|
| hosts | array | Hostnames this TLSContext applies to |
| secret | string | Name of the Kubernetes Secret containing TLS certificates |
| cert_chain_file | string | Path to the certificate chain PEM file (alternative to secret) |
| private_key_file | string | Path to the private key PEM file (alternative to secret) |
| ca_secret | string | Name of the Kubernetes Secret containing CA certificates for client verification |
| cert_required | boolean | Whether client TLS certificates are required (mTLS) |
| min_tls_version | string | Minimum TLS version to accept |
| max_tls_version | string | Maximum TLS version to accept |
| cipher_suites | array | Allowed TLS cipher suites |
| ecdh_curves | array | Allowed ECDH curves |
| alpn_protocols | string | ALPN protocols to advertise |
| redirect_cleartext_from | integer | Port number from which to redirect cleartext traffic to TLS |
| sni | string | SNI hostname to present for outbound TLS connections |
| ambassador_id | array | Ambassador IDs that should use this TLSContext |