In the instructions for tls options I only saw the following for docker
traefik.http.routers.router0.tls.options=foobar
I was wondering how do I set up mutual authentication?
Hello @trajano,
Mutual Authentication can be configured via tls.options:
https://docs.traefik.io/v2.0/https/tls/#mutual-authentication
Those TLS options can then be applied to a router.
thanks but I am trying to figure out how to do it using the Docker labels. Now that the beta is out there should be something around here https://docs.traefik.io/v2.0/https/tls/#client-authentication-mtls
Still no luck, I tried
traefik.http.routers.intranet.tls.options="clientAuth.clientAuthType=RequireAnyClientCert"
I simply set up the configuration needed in a .toml file:
[tls.options]
[tls.options.client]
[tls.options.client.clientAuth]
caFiles = ["/etc/traefik/sslca/basic.pem"]
clientAuthType = "RequireAndVerifyClientCert"
and then used a docker label to reference the config:
- "traefik.http.routers.myrouter.tls.options=client@file"
works like a charm.
HTH!
1 Like
Thanks totally forgot about this question, but you and I ended up with the same solution that I used in Trajano base Docker swarm stacks
What is client@file ? where this come from ? i don't understand your solution
This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.