fix(traefik): parameterize cms auth middleware
Some checks failed
Build & Deploy / 🔍 Prepare (push) Successful in 8s
Build & Deploy / 🧪 QA (push) Successful in 3m13s
Build & Deploy / 🏗️ Build (push) Successful in 10m7s
Build & Deploy / 🚀 Deploy (push) Failing after 7s
Build & Deploy / 🩺 Health Check (push) Has been skipped
Build & Deploy / 🔔 Notify (push) Successful in 2s
Some checks failed
Build & Deploy / 🔍 Prepare (push) Successful in 8s
Build & Deploy / 🧪 QA (push) Successful in 3m13s
Build & Deploy / 🏗️ Build (push) Successful in 10m7s
Build & Deploy / 🚀 Deploy (push) Failing after 7s
Build & Deploy / 🩺 Health Check (push) Has been skipped
Build & Deploy / 🔔 Notify (push) Successful in 2s
This commit is contained in:
@@ -21,8 +21,8 @@ services:
|
||||
- "caddy.reverse_proxy={{upstreams 3000}}"
|
||||
|
||||
# Forwarded Headers (Protocol Normalization)
|
||||
- "traefik.http.middlewares.mb-grid-forward.headers.customrequestheaders.X-Forwarded-Proto=https"
|
||||
- "traefik.http.middlewares.mb-grid-forward.headers.customrequestheaders.X-Forwarded-Ssl=on"
|
||||
- "traefik.http.middlewares.${PROJECT_NAME:-mb-grid}-forward.headers.customrequestheaders.X-Forwarded-Proto=https"
|
||||
- "traefik.http.middlewares.${PROJECT_NAME:-mb-grid}-forward.headers.customrequestheaders.X-Forwarded-Ssl=on"
|
||||
|
||||
# Gatekeeper Router (Path-based)
|
||||
- "traefik.http.routers.mb-grid-gatekeeper.rule=(Host(`${TRAEFIK_HOST}`) && PathPrefix(`/gatekeeper`))"
|
||||
@@ -32,10 +32,10 @@ services:
|
||||
- "traefik.http.routers.mb-grid-gatekeeper.priority=2000"
|
||||
- "traefik.http.routers.mb-grid-gatekeeper.service=mb-grid-gatekeeper-svc"
|
||||
|
||||
- "traefik.http.middlewares.mb-grid-auth.forwardauth.address=http://mb-grid-gatekeeper:3000/gatekeeper/api/verify"
|
||||
- "traefik.http.middlewares.mb-grid-auth.forwardauth.trustForwardHeader=true"
|
||||
- "traefik.http.middlewares.mb-grid-auth.forwardauth.authRequestHeaders=X-Forwarded-Host,X-Forwarded-Proto,X-Forwarded-For,Cookie"
|
||||
- "traefik.http.middlewares.mb-grid-auth.forwardauth.authResponseHeaders=X-Auth-User"
|
||||
- "traefik.http.middlewares.${PROJECT_NAME:-mb-grid}-auth.forwardauth.address=http://mb-grid-gatekeeper:3000/gatekeeper/api/verify"
|
||||
- "traefik.http.middlewares.${PROJECT_NAME:-mb-grid}-auth.forwardauth.trustForwardHeader=true"
|
||||
- "traefik.http.middlewares.${PROJECT_NAME:-mb-grid}-auth.forwardauth.authRequestHeaders=X-Forwarded-Host,X-Forwarded-Proto,X-Forwarded-For,Cookie"
|
||||
- "traefik.http.middlewares.${PROJECT_NAME:-mb-grid}-auth.forwardauth.authResponseHeaders=X-Auth-User"
|
||||
healthcheck:
|
||||
test: [ "CMD", "node", "-e", "fetch('http://127.0.0.1:3000/api/health').then(r => r.ok ? process.exit(0) : process.exit(1)).catch(() => process.exit(1))" ]
|
||||
interval: 10s
|
||||
@@ -110,7 +110,7 @@ services:
|
||||
- "traefik.http.routers.mb-grid-cms.tls=true"
|
||||
- "traefik.http.routers.mb-grid-cms.priority=1000"
|
||||
- "traefik.http.routers.mb-grid-cms.service=mb-grid-cms-svc"
|
||||
- "traefik.http.routers.mb-grid-cms.middlewares=mb-grid-forward,compress"
|
||||
- "traefik.http.routers.mb-grid-cms.middlewares=${PROJECT_NAME:-mb-grid}-forward,compress"
|
||||
- "traefik.http.services.mb-grid-cms-svc.loadbalancer.server.port=8055"
|
||||
- "traefik.docker.network=infra"
|
||||
- "caddy=http://${DIRECTUS_HOST:-cms.mb-grid-solutions.localhost}"
|
||||
|
||||
Reference in New Issue
Block a user