Hi all,
I'm using traefik v2.2.0-rc2
I'm trying to pass my client certificate to my backend and I can see the following messages into the traefik log
time="2020-03-16T11:28:01Z" level=warning msg="Tried to extract a certificate on a request without mutual TLS" middlewareName=default-addprefix@kubernetescrd middlewareType=PassClientTLSCert
time="2020-03-16T11:28:01Z" level=warning msg="Tried to extract a certificate on a request without mutual TLS" middlewareType=PassClientTLSCert middlewareName=default-addprefix@kubernetescrd
But, the header X-Forwarded-Tls-Client-Cert it's not filled and I cannot see it in my backend.
I reviewed the dashbord and I have all properly configured (or the dasborad is not showing any error), into the traefik log I don't have any error.
I have setup the mutualTLS authenthication with the following config:
apiVersion: traefik.containo.us/v1alpha1
kind: TLSOption
metadata:
name: mtlsoption
namespace: default
spec:
maxVersion: VersionTLS12
clientAuth:
caSecret: ca-secret
secretNames:
- ca-secret
clientAuthType: VerifyClientCertIfGiven
To pass the certificate to the backend it's necessary some specified option into the clientAuthType?
My client do not support SNI, does it have any effect on this?
Could someone explain what I and doing wrong or what means the warning message?
Thanks