Mirrors/unleash.unleash
1
0
Fork 0
mirror of https://github.com/Unleash/unleash.git synced 2025-01-20 00:08:02 +01:00
Code Issues Projects Releases Wiki Activity

docs: troubleshooting unleash over https (#6250)

Browse Source
This commit is contained in:
Mateusz Kwasniewski 2024-02-15 15:49:21 +01:00 committed by GitHub
parent cb53df6176
commit 2c5cd13160
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
4 changed files with 53 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

41
website/docs/using-unleash/troubleshooting/https.md Normal file
View File

@ -0,0 +1,41 @@
---
title: Configuring Unleash to run over HTTPS
---
Preferred methods for setting up HTTPS in self-hosted instances, from highly recommended to those requiring more caution:
## Load Balancer
The best choice is to use a load balancer.
A load balancer from a cloud provider renews the HTTPS certificates for you and keeps the data safe when it moves between the internet and your server.
Also, your cloud provider's private network between your load balancer and the application is already encrypted.
## Sidecar
If you're using something like Kubernetes and need HTTPS to be handled right next to your Unleash app, use a sidecar pattern.
This method keeps the HTTPS handling separate from the Unleash application logic.
Tools like [Istio](https://istio.io/), [Envoy](https://www.envoyproxy.io/), [HAProxy](https://www.haproxy.org/), or [Nginx](https://www.nginx.com/) can help by automatically updating certificates.
## Manual SSL termination in Unleash
Approach manual SSL termination within Unleash with caution.
This direct control method over the SSL setup adds complexity and a maintenance burden that can be challenging to manage.
If you insist on having Unleash do HTTPS termination for you, you'll need to set that up yourself using:
* http://expressjs.com/en/5x/api.html#app.listen
* https://nodejs.org/api/https.html#httpscreateserveroptions-requestlistener
Example:
```javascript
const https = require('node:https');
const fs = require('node:fs');
const options = {
key: fs.readFileSync('test/fixtures/keys/agent2-key.pem'),
cert: fs.readFileSync('test/fixtures/keys/agent2-cert.pem')
};
let app = unleash.create();
https.createServer(options, app).listen(443);
```

4
website/docusaurus.config.js
View File

@ -701,6 +701,10 @@ module.exports = {
from: '/how-to/how-to-troubleshoot-cors',
to: '/using-unleash/troubleshooting/cors',
},
{
from: '/how-to/how-to-troubleshoot-https',
to: '/using-unleash/troubleshooting/https',
},
{
from: '/how-to/how-to-troubleshoot-feature-not-available',
to: '/using-unleash/troubleshooting/feature-not-available',

3
website/sidebars.js
View File

@ -464,11 +464,12 @@ module.exports = {
},
items: [
'using-unleash/troubleshooting/cors',
'using-unleash/troubleshooting/https',
'using-unleash/troubleshooting/email-service',
'using-unleash/troubleshooting/feature-not-available',
'using-unleash/troubleshooting/flag-exposure',
'using-unleash/troubleshooting/flag-not-returned',
'using-unleash/troubleshooting/flag-abn-test-unexpected-result'
'using-unleash/troubleshooting/flag-abn-test-unexpected-result',
],
},
'generated/unleash-edge',

7
website/vercel.json
View File

@ -650,6 +650,11 @@
"destination": "/using-unleash/troubleshooting/cors",
"permanent": true
},
{
"source": "/how-to/how-to-troubleshoot-https",
"destination": "/using-unleash/troubleshooting/https",
"permanent": true
},
{
"source": "/how-to/how-to-troubleshoot-feature-not-available",
"destination": "/using-unleash/troubleshooting/feature-not-available",
@ -776,4 +781,4 @@
"permanent": true
}
]
}
}