Plugin to read file and expose an API endpoint

ieugen · October 27, 2024, 9:21am

What are the limitations of plugins?

I found very little documentation about this.

Can I respond to http requests / extend traefik / expose a REST API ?

Can I read a file ( acme.json) . I believe I can do this - I saw some plugins that do that.

I would like to implement a plugin that leverages traefik ACME support and provision those certificates for services that don't support acme (DB's , etc) .

Traefik would fetch the cert and store it in acme.json.
I would read the file and expose it as a secure API , preferably private to my swarm cluster if possible.
I would then call this API to get certs for each service that needs them.

bluepuma77 · October 27, 2024, 12:02pm

AFAIK a plugin is a middleware, so can intercept and change requests after router match before service call.

It’s written in go, it runs in an own runtime, you can not select which target service instance the request is proxied to. You can change headers and body going both ways. And you can have static variables for example for caching across requests.

Traefik has a read only API, so you can write external programs for example to fetch Host(), generate a TLS cert, then supply it as dynamic config via http, file or redis, etc (doc).

Topic		Replies	Views
Traefik 2.0.4 letsencrypt Traefik v2 docker-swarm , letsencrypt-acme	4	865	December 10, 2019
Migrating from nginx to Traefik: building acme.json from existing certificates? Traefik v2 letsencrypt-acme	4	1561	October 8, 2020
Proxy to external service Traefik v2 docker , file	1	4822	July 13, 2021
Acme.json stays empty Traefik v2 letsencrypt-acme	2	7209	January 20, 2020
How can I store SSL Certs in a Key-Value store like Redis, Vault, Consul or etcd rather than in acme.json? Traefik v2 docker , consul-catalog , letsencrypt-acme , kv	2	1129	September 9, 2022

Plugin to read file and expose an API endpoint

Related topics