Ryfujk

Why is there a PLL in CPU?

Can a caster that cast Polymorph on themselves stop concentrating at any point even if their Int is low?

How to be diplomatic in refusing to write code that breaches the privacy of our users

Why does C# sound extremely flat when saxophone is tuned to G?

If I blow insulation everywhere in my attic except the door trap, will heat escape through it?

What can we do to stop prior company from asking us questions?

What is the purpose of the Evocation wizard's Potent Cantrip feature?

How did people program for Consoles with multiple CPUs?

Why doesn't a table tennis ball float on the surface? How do we calculate buoyancy here?

Should I tutor a student who I know has cheated on their homework?

Apart from "berlinern", do any other German dialects have a corresponding verb?

How long to clear the 'suck zone' of a turbofan after start is initiated?

How to safely derail a train during transit?

Why did we only see the N-1 starfighters in one film?

Science fiction (dystopian) short story set after WWIII

Why didn't Khan get resurrected in the Genesis Explosion?

What is the point of a new vote on May's deal when the indicative votes suggest she will not win?

What does "Its cash flow is deeply negative" mean?

The King's new dress

Failed to fetch jessie backports repository

Is it my responsibility to learn a new technology in my own time my employer wants to implement?

Visit to the USA with ESTA approved before trip to Iran

Implement the Thanos sorting algorithm

Is HostGator storing my password in plaintext?

Howto traefik->keycloak gatekeeper->service?

0

My question is:

Specifically, how do I configure traefik to double proxy through keycloak gatekeepr to authenticate my services as outlined below?

I know my authentication chain looks like the title suggests but I'm completely missing the configuration requirements for traefik to point to keycloak gatekeeper, et al.

background:

I'm building a fairly complicated development home lab and trying to implement keycloak authentication/authorization behind a traefik proxy. My network layout is such that I'm afforded name resolution via local dnsmasq -so IP/name resolution is not a problem. See here for my network setup.

The basic Layout is like this-ish:

• dnsmasq listens on localhost and dhcp (when connected) and a private network (i.e. 127.0.0.1, 10.x.x.x and optionally 192.x.x.x)


• traefik listens on :80/443 and routes to my services on the private (10.x.x.x) network just fine -similarly over my docker custom netwok. No problems.


• keycloak works just fine routing to services on it's own (when traefik is shutdown and I use keycloak.js or other mechanisms)

There are a lot of moving parts here so I've tried to simplify this question as much as possible.

Any and all help is welcome.

networking reverse-proxy authentication proxypass

share

asked 5 mins ago

Karl N. RedmanKarl N. Redman

12

New contributor

Karl N. Redman is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

add a comment | 

0

My question is:

Specifically, how do I configure traefik to double proxy through keycloak gatekeepr to authenticate my services as outlined below?

I know my authentication chain looks like the title suggests but I'm completely missing the configuration requirements for traefik to point to keycloak gatekeeper, et al.

background:

I'm building a fairly complicated development home lab and trying to implement keycloak authentication/authorization behind a traefik proxy. My network layout is such that I'm afforded name resolution via local dnsmasq -so IP/name resolution is not a problem. See here for my network setup.

The basic Layout is like this-ish:

• dnsmasq listens on localhost and dhcp (when connected) and a private network (i.e. 127.0.0.1, 10.x.x.x and optionally 192.x.x.x)


• traefik listens on :80/443 and routes to my services on the private (10.x.x.x) network just fine -similarly over my docker custom netwok. No problems.


• keycloak works just fine routing to services on it's own (when traefik is shutdown and I use keycloak.js or other mechanisms)

There are a lot of moving parts here so I've tried to simplify this question as much as possible.

Any and all help is welcome.

networking reverse-proxy authentication proxypass

share

asked 5 mins ago

Karl N. RedmanKarl N. Redman

12

New contributor

Karl N. Redman is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

add a comment | 

My question is:

Specifically, how do I configure traefik to double proxy through keycloak gatekeepr to authenticate my services as outlined below?

I know my authentication chain looks like the title suggests but I'm completely missing the configuration requirements for traefik to point to keycloak gatekeeper, et al.

background:

I'm building a fairly complicated development home lab and trying to implement keycloak authentication/authorization behind a traefik proxy. My network layout is such that I'm afforded name resolution via local dnsmasq -so IP/name resolution is not a problem. See here for my network setup.

The basic Layout is like this-ish:

• dnsmasq listens on localhost and dhcp (when connected) and a private network (i.e. 127.0.0.1, 10.x.x.x and optionally 192.x.x.x)


• traefik listens on :80/443 and routes to my services on the private (10.x.x.x) network just fine -similarly over my docker custom netwok. No problems.


• keycloak works just fine routing to services on it's own (when traefik is shutdown and I use keycloak.js or other mechanisms)

There are a lot of moving parts here so I've tried to simplify this question as much as possible.

Any and all help is welcome.

networking reverse-proxy authentication proxypass

share

asked 5 mins ago

Karl N. RedmanKarl N. Redman

12

New contributor

Karl N. Redman is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

share

asked 5 mins ago

Karl N. RedmanKarl N. Redman

12

New contributor

Karl N. Redman is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

share

asked 5 mins ago

Karl N. RedmanKarl N. Redman

12

New contributor

Karl N. Redman is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

asked 5 mins ago

Karl N. RedmanKarl N. Redman

12

New contributor

Karl N. Redman is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

asked 5 mins ago

Karl N. RedmanKarl N. Redman

12