Hi
On 10/11/23 16:05, Willy Tarreau wrote:
No, I remember Tim raised this point a while ago basically saying "hey
don't break the DNS I use it for my servers". For me simple server
For reference, you're probably thinking of this email:
https://www.mail-archive.com/haproxy@formilux.org/msg4202
On Wed, Oct 11, 2023 at 02:20:02PM +, Branitsky, Norman wrote:
> The sample SAML authentication code saml.ini was provided by HAProxy
> Enterprises support.
> They also provided:
> /opt/hapee-extras/bin/hapee-saml
Ah OK I didn't catch that you were talking about this one, shame on me :-)
But
On Tue, Oct 10, 2023 at 01:20:13PM +, Tristan wrote:
> That said, I do have some use-cases at the moment where I actively make use
> of SRV records on the backends internally, for which losing support would be
> a little annoying, so I can appreciate the will to keep them.
These are among the
The sample SAML authentication code saml.ini was provided by HAProxy
Enterprises support.
They also provided:
/opt/hapee-extras/bin/hapee-saml
On Oct 11, 2023, at 9:39 AM, Willy Tarreau wrote:
Hi Norman,
On Tue, Oct 10, 2023 at 11:44:52AM +, Branitsky, Norman wrote:
I use the SPOE for SAML
On Tue, Oct 10, 2023 at 03:04:26PM +0200, Aleksandar Lazic wrote:
> > WASM on the other hand would provide more performance and compile-time
> > checks but I fear that it could also bring new classes of issues such as
> > higher memory usage, higher latencies, and would make it less convenient
> >
Hi Norman,
On Tue, Oct 10, 2023 at 11:44:52AM +, Branitsky, Norman wrote:
> I use the SPOE for SAML authentication with Okta and Azure AD.
OK, thanks a lot for sharing your use case. Just out of curiosity, is
this a component that you developed yourself (or in your company) or
something that'
On 10/10/2023 14:04, Aleksandar Lazic wrote:
...
Well this implies that always a dpapi should run together with HAProxy
if you want something like DNS resolving for server or anything else?
I don't think Willy meant removing this much; from a previous discussion
with him on the topic, it s
Hi.
On 2023-10-10 (Di.) 09:08, Willy Tarreau wrote:
Hi Tristan,
On Sun, Oct 08, 2023 at 12:15:00PM +, Tristan wrote:
Since this was brought up,
On 7 Oct 2023, at 14:34, Willy Tarreau wrote:
[...]
Maybe this will then bring up SPOE to a level where the body of a request
can be scanned
I use the SPOE for SAML authentication with Okta and Azure AD. I'm still
waiting for shared variables so I can restore my active-active configuration
with 2 HAPEE servers.
Content by Norman. Spelling by iPhone.
On Oct 10, 2023, at 03:12, Willy Tarreau wrote:
On Sun, Oct 08, 2023 at 02:43:57P
On Sun, Oct 08, 2023 at 02:43:57PM +0200, Aleksandar Lazic wrote:
>
> On 2023-10-08 (So.) 14:15, Tristan wrote:
> > Since this was brought up,
> >
> > > On 7 Oct 2023, at 14:34, Willy Tarreau wrote:
> > >
> > > [...]
> > >
> > > > Maybe this will then bring up SPOE to a level where the body of
Hi Tristan,
On Sun, Oct 08, 2023 at 12:15:00PM +, Tristan wrote:
> Since this was brought up,
>
> > On 7 Oct 2023, at 14:34, Willy Tarreau wrote:
> >
> > [...]
> >
> >> Maybe this will then bring up SPOE to a level where the body of a request
> >> can be scanned and bring it to a full WAF
On 2023-10-08 (So.) 14:15, Tristan wrote:
Since this was brought up,
On 7 Oct 2023, at 14:34, Willy Tarreau wrote:
[…]
Maybe this will then bring up SPOE to a level where the body of a request
can be scanned and bring it to a full WAF level or as WASM filter.
Any thoughts on the feasib
Since this was brought up,
> On 7 Oct 2023, at 14:34, Willy Tarreau wrote:
>
> […]
>
>> Maybe this will then bring up SPOE to a level where the body of a request
>> can be scanned and bring it to a full WAF level or as WASM filter.
Any thoughts on the feasibility of a WASM based alternative
On Sat, Oct 07, 2023 at 02:55:03PM +0200, Aleksandar Lazic wrote:
> Hm, this makes me thinking to have also some mode like mysql,mqtt, what ever
> to use it for monitoring or any other purpose.
Good point indeed, these were among the ones that were already
discussed in the past. But you get the po
Hi Willy.
On 2023-10-07 (Sa.) 14:45, Willy Tarreau wrote:
Hi Alex,
On Sat, Oct 07, 2023 at 01:51:43PM +0200, Aleksandar Lazic wrote:
Hi Willy.
On 2023-10-07 (Sa.) 10:26, Willy Tarreau wrote:
Hi,
HAProxy 2.9-dev7 was released on 2023/10/06. It added 75 new commits
after version 2.9-dev6.
Th
Hi Alex,
On Sat, Oct 07, 2023 at 01:51:43PM +0200, Aleksandar Lazic wrote:
> Hi Willy.
>
> On 2023-10-07 (Sa.) 10:26, Willy Tarreau wrote:
> > Hi,
> >
> > HAProxy 2.9-dev7 was released on 2023/10/06. It added 75 new commits
> > after version 2.9-dev6.
> >
> > This version fixes a number of issu
Hi Willy.
On 2023-10-07 (Sa.) 10:26, Willy Tarreau wrote:
Hi,
HAProxy 2.9-dev7 was released on 2023/10/06. It added 75 new commits
after version 2.9-dev6.
This version fixes a number of issues in previous development releases
and prepares the work for subsequent patch series:
[snip]
- t
Hi,
HAProxy 2.9-dev7 was released on 2023/10/06. It added 75 new commits
after version 2.9-dev6.
This version fixes a number of issues in previous development releases
and prepares the work for subsequent patch series:
- Rémi found a bug in the latest update of the plock code that could
som
18 matches
Mail list logo
