This is intended to test Traefik capabilities
- Docker
- docker-compose >= 3
In order to test the echo app, you need to add this line in your /etc/hosts file:
127.0.0.1 echo.testing.com
Generate a self signed certificate for the url with:
openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout traefik/certs/cert.key -out traefik/certs/cert.crt
Generate a self signed client certificate for mTLS with:
openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout traefik/certs/client.key -out traefik/certs/client.crt
Traefik and the three example apps are run in different compose files:
docker-compose -f docker-compose.base.yml up --build
docker-compose -f docker-compose.app1.yml up
docker-compose -f docker-compose.app2.yml up
docker-compose -f docker-compose.app3.yml up
- The ui is available under
localhost:8080 - The first app is reached through
localhost/findme - The second app is reached through
https://echo.testing.com/standard - The third app is reached through
https://echo.testing.com:4443/tlsand requires a client certificate. The certificate can be installed inPostmanfollowing this guide
- Discovery: Traefik picks new applications automatically: When you start one of the example apps it appears in the ui automatically
- Routing: Traefik sends requests based on the configuration, which is passed through labels. No restart in
traefikitself is needed for this - Password Access for the admin interface: It is generated through
htpasswd - Load Balancing: Two instances of the same app receive traffic using
wrr - SSL Termination: Using a self signed certificate, the requests to the echo app are sent through http
- Mutual TLS: Using a self signed client certificate, the client is checked as well
- Access: There are different
entryPointsdefined, and not all of them should be available for each app. This can be defined in the config for each service, or by modifying thedefaultEntryPointsin the TOML file
- Authentication: Can you do auth by sending the request to a SAML provider through the
auth.forwarddirective?
- Dynamic update of the
traefik.toml