From ee64e7ccc3ef5b4043a45f595d51297f89e445f3 Mon Sep 17 00:00:00 2001
From: JJGadgets <git@jjgadgets.tech>
Date: Sun, 13 Apr 2025 03:39:38 +0800
Subject: [PATCH] fix(ingress-nginx): annotations-risk-level for forward auth

4.12.x restricts annotations even harder
---
 kube/deploy/core/ingress/ingress-nginx/app/common-values.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/kube/deploy/core/ingress/ingress-nginx/app/common-values.yaml b/kube/deploy/core/ingress/ingress-nginx/app/common-values.yaml
index f20b478c..16af019a 100644
--- a/kube/deploy/core/ingress/ingress-nginx/app/common-values.yaml
+++ b/kube/deploy/core/ingress/ingress-nginx/app/common-values.yaml
@@ -11,6 +11,7 @@ controller:
   extraArgs:
     default-backend-service: "ingress/default-backend"
   config:
+    annotations-risk-level: "Critical"
     enable-brotli: "true"
     enable-real-ip: "true"
     use-forwarded-headers: "true"