Hello! I have a Kubernetes application that uses Traefik with ingress. The problem is, I need to add mTLS authentication on a specific endpoint, to validate the origin of webhooks. This is my current ingress:
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: traefik
spec:
rules:
- host: 'my-domain.com'
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: web-service
port:
number: 80
tls:
- hosts:
- my-domain.com
secretName: my-secret
How do I add a "/webhook" route, for example, with the same host, that points to my service's "/webhook", but validates the user's mTLS certificate only on that specific endpoint? I checked this article, but I'm still confused on how to apply this to my ingress.