Add support for enabling the Gitlab WAF in ingress-nginx
What does this MR do?
Add support for enabling the Gitlab WAF in ingress-nginx
This fixes #11 (closed)
Currently installing the Gitlab WAF is only able to be done via Gitlab Managed Apps v1, in the Gitlab UI.
This commit allows you to enable the Gitlab WAF in Gitlab Managed
Apps v2. In order to enable the WAF, you need to add the following
to your .gitlab/managed-apps/config.yaml
file in your
cluster management project.
ingress:
installed: true
gitlab_waf:
installed: true
By default the WAF is set to DetectionOnly
, however, if you wish
to set it to blocking, you can add the following to your
.gitlab/managed-apps/config.yaml
ingress:
gitlab_waf:
modsecurity_mode_blocking: true
Screenshots
Manual QA
-
Test this change using a Cluster management project
Edited by Sam White