fix typo

Update login.mdx
Update tls-cert-auth.mdx
2025-07-18 01:29:25 +00:00 · 2025-07-17 00:20:02 +04:00 · 2025-07-17 00:09:56 +04:00 · 2025-07-17 00:08:34 +04:00 · 2025-07-15 21:47:42 -03:00
2 changed files with 12 additions and 3 deletions
--- a/docs/api-reference/endpoints/tls-cert-auth/login.mdx
+++ b/docs/api-reference/endpoints/tls-cert-auth/login.mdx
@ -2,3 +2,8 @@
 title: "Login"
 openapi: "POST /api/v1/auth/tls-cert-auth/login"
 ---
+
+<Warning>
+  Infisical US/EU and dedicated instances are deployed with AWS ALB. TLS Certificate Auth must flow through our ALB mTLS pass-through in order to authenticate.
+  When you are authenticating with TLS Certificate Auth, you must use the port `8443` instead of the default `443`. Example: `https://app.infisical.com:8443/api/v1/auth/tls-cert-auth/login`
+</Warning>
--- a/docs/documentation/platform/identities/tls-cert-auth.mdx
+++ b/docs/documentation/platform/identities/tls-cert-auth.mdx
@ -42,10 +42,14 @@ To be more specific:
  Most of the time, the Infisical server will be behind a load balancer or
  proxy. To propagate the TLS certificate from the load balancer to the
  instance, you can configure the TLS to send the client certificate as a header
-  that is set as an [environment
-  variable](/self-hosting/configuration/envars#param-identity-tls-cert-auth-client-certificate-header-key).
+  that is set as an [environment variable](/self-hosting/configuration/envars#param-identity-tls-cert-auth-client-certificate-header-key).
 </Accordion>

+<Note>
+  Infisical US/EU and dedicated instances are deployed with AWS ALB. TLS Certificate Auth must flow through our ALB mTLS pass-through in order to authenticate.
+  When you are authenticating with TLS Certificate Auth, you must use the port `8443` instead of the default `443`. Example: `https://app.infisical.com:8443/api/v1/auth/tls-cert-auth/login`
+</Note>
+
 ## Guide

 In the following steps, we explore how to create and use identities for your workloads and applications on TLS Certificate to
@ -123,7 +127,7 @@ try {
  const clientCertificate = fs.readFileSync("client-cert.pem", "utf8");
  const clientKeyCertificate = fs.readFileSync("client-key.pem", "utf8");

-  const infisicalUrl = "https://app.infisical.com"; // or your self-hosted Infisical URL
+  const infisicalUrl = "https://app.infisical.com:8443"; // or your self-hosted Infisical URL
  const identityId = "<your-identity-id>";

  // Create HTTPS agent with client certificate and key
Author	SHA1	Message	Date
Daniel Hougaard	32b2f7b0fe	fix typo	2025-07-17 00:20:02 +04:00
Daniel Hougaard	4c2823c480	Update login.mdx	2025-07-17 00:09:56 +04:00
Daniel Hougaard	60438694e4	Update tls-cert-auth.mdx	2025-07-17 00:08:34 +04:00
carlosmonastyrski	a94a26263a	Merge pull request #4115 from Infisical/fix/postgresAppConnectionDocTip Minor improvement on the Postgres docs changing a warning to a tip	2025-07-15 21:47:42 -03:00