Traefik selective middleware

antwacky · October 8, 2023, 11:40am

Using the following configuration, does this mean that requests from 8.8.8.8 will not execute the forwardauth middleware and be allowed based on IP? If not, how can I do such a thing without creating multiple routes.

http:
  routers:
    my-router:
      rule: Host(`my-service.com`)
      service: my-service
      middlewares:
        - ipwhitelist
        - forwardauth
  middlewares:
    ipwhitelist:
      ipWhiteList:
        ipStrategy:
          excludedIPs:
            - "8.8.8.8/32"
    forwardauth:
      forwardAuth:
        address: https://example.com/auth

bluepuma77 · October 8, 2023, 2:13pm

Usually all middlewares will be applied. AFAIK if you want some clients to not do auth, then you need a second router, with rule = … && ClientIP(). (Doc)

Topic		Replies	Views
Question: ForwardAuth selective endpoints Traefik v2 (latest) docker-swarm	1	449	December 3, 2019
Apply middleware to specific client IP Traefik v2 (latest) middleware	4	129	February 12, 2024
Whitelist Configuration Traefik v2 (latest) middleware	4	1270	March 28, 2022
Is traefik Middleware support ipblacklist? Traefik v2 (latest) middleware	10	514	April 22, 2020
Middleware forwardauth does not apply Traefik v2 (latest) file	12	4273	October 1, 2019

Traefik selective middleware

Related Topics