A minimal forward authentication service that provides OAuth/SSO login and authentication for the traefik reverse proxy/load balancer. Traefik prepends the namespace to the name of middleware defined via a Kubernetes resource. This is handled automatically when referencing the middleware from another resource in the same namespace (so the namespace does not need to be prepended when referenced). However, the full name, including the namespace, must be used when referenced from static configuration.
Features
- Seamlessly overlays any http service with a single endpoint
- Supports multiple providers including Google and OpenID Connect
- Supports multiple domains/subdomains by dynamically generating redirect_uri's
- Allows authentication to be selectively applied/bypassed based on request parameters
- Supports use of centralised authentication host/redirect_uri
- Allows authentication to persist across multiple domains
- Supports extended authentication beyond Google token lifetime
Categories
SecurityLicense
MIT LicenseFollow Traefik Forward Auth
You Might Also Like
Rate This Project
Login To Rate This Project
User Reviews
Be the first to post a review of Traefik Forward Auth!