Terminate TLS and forward new HTTPS request

wopl · November 30, 2020, 3:30pm

Hi all,
I have a bit an unusual request. From my browser I call a service with HTTPS. Traefik (used as Ingress into my Kubernetes) terminates the TLS. So my user will see a valid Let's Encrypt certificate.

Now my tricky part: Forwarding the request to my service needs to be done through HTTPS. At service side there is a second self signed certificate, which I want to hide from the end user. Of course, the self signed certificate can not be verified.

My definition looks like follows:

apiVersion: traefik.containo.us/v1alpha1
kind: IngressRoute
metadata:
  name: ingressroute-service
  namespace: default
spec:
  entryPoints:
    - websecure
  routes:
  - match: Host(`myhost.com`)
    kind: Rule
    services:
    - name: service
      port: 8080
  tls:
    certResolver: myresolver

This works. What do I have to do to switch to service with HTTPS and an unsigned certificate?

Is there a middleware configuration within Traefik that I can achieve such? Thanks for any advise.
Wolfram

wopl · November 30, 2020, 5:28pm

I just found out by myself and it is soooooo simple:

services:
    - name: service
      port: 8443
      scheme: https

That's it.
Hope this will help others.
Wolfram

Topic		Replies	Views
Forwarding to https backend fails with ingress Traefik v1 kubernetes-ingress , letsencrypt-acme	2	4197	October 22, 2022
How to pass-through TLS with Traefik Kubernetes Ingress? Traefik v2 kubernetes-ingress	1	2437	July 17, 2023
Questions about the redirect from http to https Traefik v2 kubernetes-ingress , middleware	0	487	August 15, 2022
Traefik v2.1 Configuration for HTTPs support with Kubernetes Ingress Traefik v2 kubernetes-ingress	0	675	January 17, 2020
How to route http requests to a https service Traefik v2 kubernetes-crd	5	1660	August 18, 2022

Terminate TLS and forward new HTTPS request

Related topics