appletalk
/
traefik
forked from coop-cloud/traefik
0
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Add a slot for a second traefik-forward-auth instance

This commit is contained in:
3wc 2021-11-16 16:08:04 +02:00
parent 02ebb1412f
commit 26fcaaea69
3 changed files with 12 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
.env.sample
View File

@ -52,6 +52,7 @@ COMPOSE_FILE="compose.yml"
#COMPOSE_FILE="$COMPOSE_FILE:compose.keycloak.yml"
#KEYCLOAK_MIDDLEWARE_ENABLED=1
#KEYCLOAK_TFA_SERVICE=traefik-forward-auth_app
#KEYCLOAK_MIDDLEWARE_2_ENABLED=1
#####################################################################
# Prometheus metrics #

4
compose.keycloak.yml
View File

@ -5,7 +5,9 @@ services:
app:
deploy:
labels:
- "traefik.http.routers.traefik.middlewares=keycloak@file"
- "traefik.http.routers.${STACK_NAME}.middlewares=keycloak@file"
environment:
- KEYCLOAK_MIDDLEWARE_ENABLED
- KEYCLOAK_TFA_SERVICE
- KEYCLOAK_MIDDLEWARE_2_ENABLED
- KEYCLOAK_MIDDLEWARE_2_SERVICE

8
file-provider.yml.tmpl
View File

@ -9,6 +9,14 @@ http:
authResponseHeaders:
- X-Forwarded-User
{{ end }}
{{ if eq (env "KEYCLOAK_MIDDLEWARE_2_ENABLED") "1" }}
keycloak2:
forwardAuth:
address: "http://${KEYCLOAK_MIDDLEWARE_2_SERVICE}:4181"
trustForwardHeader: true
authResponseHeaders:
- X-Forwarded-User
{{ end }}
security:
headers:
frameDeny: true