Is it possible to establish a mTLS HTTPS session between the Client and the Backend Service, routed via Traefik (end to end TLS):
Have been using an IngressRoute (rather than IngressRouteTCP). The passtlscert middleware is sending the client cert data to the auth-server correctly:
apiVersion: traefik.containo.us/v1alpha1 kind: IngressRoute metadata: name: tls spec: entryPoints: - websecure routes: - kind: Rule match: Host(`endservice.myserver.com`) middlewares: - name: passtlscert - name: liu-auth services: - name: endservice-svc port: 4431 tls: options: default: clientAuth: clientAuthType: RequireAnyClientCert passthrough: true
The endservice has nginx in front and responds with "No required SSL certificate was sent"
Don't believe this to be a bug, but more of an issue with either the setup or my expectations of functionality that does not as yet exist..?
I am not using LetsEncrypt for the certificates, they are issued through a self hosted CA.