homelab/traefik
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Manage Headers for the Authentication forwarding.

Browse source
This commit is contained in:
Ludovic Fernandez 2017-09-18 17:48:07 +02:00 committed by Traefiker
parent 49e0e20ce2
commit cb05f36976
10 changed files with 334 additions and 186 deletions
Download patch file Download diff file Expand all files Collapse all files

25
docs/configuration/entrypoints.md
View file

@ -116,28 +116,31 @@ This configuration will first forward the request to `http://authserver.com/auth
If the response code is 2XX, access is granted and the original request is performed.
Otherwise, the response from the auth server is returned.
```toml
[entryPoints]
[entryPoints.http]
# ...
# To enable forward auth on an entrypoint
[entryPoints.http.auth.forward]
address = "http://authserver.com/auth"
```
```toml
[entryPoints]
[entrypoints.http]
# ...
# To enable forward auth on an entrypoint (HTTPS)
# To enable forward auth on an entrypoint
[entrypoints.http.auth.forward]
address = "https://authserver.com/auth"
# Trust existing X-Forwarded-* headers.
# Useful with another reverse proxy in front of Traefik.
#
# Optional
# Default: false
#
trustForwardHeader = true
# Enable forward auth TLS connection.
#
# Optional
#
[entrypoints.http.auth.forward.tls]
cert = "authserver.crt"
key = "authserver.key"
```
## Specify Minimum TLS Version
To specify an https entry point with a minimum TLS version, and specifying an array of cipher suites (from crypto/tls).