Protecting Services with Google OAuth on Traefik v3 — Docker Swarm (traefik-forward-auth)
This guide documents the auth-host mode pattern using thomseddon/traefik-forward-auth:2 (TFA). It replaces the more complex oauth2-proxy approach that required a dual-router hack and an errors middleware to handle redirects in Traefik v3. Why traefik-forward-auth over oauth2-proxy? With Traefik v3, oauth2-proxy’s redirect pattern broke because: traefik-forward-auth issues a real HTTP 307 redirect directly from the ForwardAuth […]
Read More →