Files
charts/templates/questions/traefik/forwardAuthMiddleware.yaml
Ethan Leisinger 2b29dc8794 feat(traefik): add support for insecureForwardAuth (#4247)
* add support for insecureSkipVerify for forwardAuth

* Fix handling of empty tls

* try something else

* simplify with with

* improve question layout and make proper version

* use piping for default

* Add some warning language for new feature

Signed-off-by: Ethan Leisinger <770373+packruler@users.noreply.github.com>
2022-11-03 00:39:33 +02:00

71 lines
2.8 KiB
YAML

- variable: forwardAuth
label: forwardAuth
schema:
type: list
default: []
items:
- variable: basicAuthEntry
label: ""
schema:
additional_attrs: true
type: dict
attrs:
- variable: name
label: Name
schema:
type: string
required: true
default: ""
- variable: address
label: Address
schema:
type: string
required: true
default: ""
- variable: trustForwardHeader
label: trustForwardHeader
schema:
type: boolean
default: false
- variable: tls
label: TLS
schema:
additional_attrs: true
type: dict
attrs:
- variable: insecureSkipVerify
label: insecureSkipVerify (expert)
description: >-
This disables all TLS certificate validation on communications with the authentication endpoint.
This could be a security risk and should only be used if you know what you are doing.
schema:
type: boolean
default: false
- variable: authResponseHeadersRegex
label: authResponseHeadersRegex
schema:
type: string
default: ""
- variable: authResponseHeaders
label: authResponseHeaders
schema:
type: list
default: []
items:
- variable: authResponseHeadersEntry
label: ""
schema:
type: string
default: ""
- variable: authRequestHeaders
label: authRequestHeaders
schema:
type: list
default: []
items:
- variable: authRequestHeadersEntry
label: ""
schema:
type: string
default: ""