Matt Holt
Matt Holt
I think there is a way, but I'd need to review the code or docs carefully, since it's been a while since I've looked at that part. If there isn't...
I'll look into it, but no promises at this point. It's kind of an odd request, since the other application _appears_ to be misbehaving.
The OCSP warnings are red herrings. We'll need more information: - What are the full, unredacted logs? - What is your full, unredacted (other than credentials) config? Actually, here is...
There's WIP (stalled currently though) that will allow you to pipe your L4 connection directly to your HTTP server without opening another socket: https://github.com/caddyserver/caddy/pull/5040
I don't see the original post mentioned anything about adding HTTP headers; so you actually want to transfer data from the mTLS handshake to the HTTP headers for an HTTP...
That should be possible. When the TLS matcher is used, it sets placeholders. We may need to add the fields you want to the replacer though: https://github.com/mholt/caddy-l4/blob/2e6e133af0f6ff9d56d71c82003ff02af149cf28/modules/l4tls/matcher.go#L102-L105
L4 has the "concept" of it in that it can match HTTP and get info from it, but it doesn't implement HTTP semantics like an HTTP server does. If you...
I guess it begs the question as to why you need to terminate TLS in the layer4 app then. The HTTP app also supports PROXY protocol... if you terminate TLS...
Can you just not terminate the requests that need HTTP requests manipulated? I don't have a way to carry data between the apps yet, for a given connection... it's also...