traefik-forward-auth icon indicating copy to clipboard operation
traefik-forward-auth copied to clipboard

Published 20 hours ago verified publisher icon thomseddon

[Feature Request] Read whitelist/blacklist from environment dynamically

Open dirtycajunrice opened this issue 4 years ago • 2 comments

The lists currently are read on init and static afterwards. If the whitelist is passed in as a secret reference in k8s it is able to be updated on the fly. This allows for secret updates without rotating the pod.

dirtycajunrice avatar Sep 02 '20 16:09 dirtycajunrice

I like this 👍

thomseddon avatar Sep 23 '20 14:09 thomseddon

I like it too, but am not currently running a k8s cluster. Would something like this be on the roadmap for docker-swarm or docker via labels, as well?

EDIT: Also, would it work to have a per-service whitelist/blacklist? I want to be able to have admin-only services protected along-side non-admin services. Not sure if this is on the roadmap.

colonelpopcorn avatar Jul 12 '21 20:07 colonelpopcorn