# The file under watch and hot reload, changes are applied immediately, no need to restart or reload. provider: "file" # "file" "consul" "kubernetes" sticky_sessions: false to_https: false rate_limit: 100 server_headers: - "X-Forwarded-Proto:https" - "X-Forwarded-Port:443" client_headers: - "Access-Control-Allow-Origin:*" - "Access-Control-Allow-Methods:POST, GET, OPTIONS" - "Access-Control-Max-Age:86400" #authorization: # type: "jwt" # creds: "910517d9-f9a1-48de-8826-dbadacbd84af-cb6f830e-ab16-47ec-9d8f-0090de732774" # type: "basic" # creds: "username:Pa$$w0rd" # type: "apikey" # creds: "5ecbf799-1343-4e94-a9b5-e278af5cd313-56b45249-1839-4008-a450-a60dc76d2bae" consul: servers: - "http://192.168.1.199:8500" - "http://192.168.1.200:8500" - "http://192.168.1.201:8500" services: # hostname: The hostname to access the proxy server, upstream : The real service name in Consul database. - hostname: "webapi-service" upstream: "webapi-service-health" path: "/one" client_headers: - "X-Some-Thing:Yaaaaaaaaaaaaaaa" - "X-Proxy-From:Aralez" rate_limit: 1 to_https: false - hostname: "webapi-service" upstream: "webapi-service-health" path: "/" token: "8e2db809-845b-45e1-8b47-2c8356a09da0-a4370955-18c2-4d6e-a8f8-ffcc0b47be81" # Consul server access token, If Consul auth is enabled kubernetes: servers: - "192.168.1.55:443" #For testing only, overrides with KUBERNETES_SERVICE_HOST : KUBERNETES_SERVICE_PORT_HTTPS env variables. services: - hostname: "webapi-service" path: "/" upstream: "webapi-service" - hostname: "webapi-service" upstream: "console-service" path: "/one" client_headers: - "X-Some-Thing:Yaaaaaaaaaaaaaaa" - "X-Proxy-From:Aralez" rate_limit: 100 to_https: false - hostname: "webapi-service" upstream: "rambul-service" path: "/two" - hostname: "websocket-service" upstream: "websocket-service" path: "/" tokenpath: "/path/to/kubetoken.txt" #If not set, will default to /var/run/secrets/kubernetes.io/serviceaccount/token upstreams: myip.mydomain.com: paths: "/": rate_limit: 200 to_https: false client_headers: - "X-Proxy-From:Aralez" servers: - "127.0.0.1:8000" - "127.0.0.2:8000" - "127.0.0.3:8000" - "127.0.0.4:8000" - "127.0.0.5:8000" "/ping": authorization: # Will be ignored if global authentication is enabled. type: "basic" creds: "admin:admin" to_https: false server_headers: - "X-Forwarded-Proto:https" - "X-Forwarded-Port:443" client_headers: - "X-Some-Thing:Yaaaaaaaaaaaaaaa" - "X-Proxy-From:Aralez" servers: - "127.0.0.1:8000" - "127.0.0.2:8000" "/draw": servers: - "192.168.1.1:8000" polo.mydomain.com: paths: "/": to_https: false client_headers: - "X-Some-Thing:Yaaaaaaaaaaaaaaa" servers: - "192.168.1.1:8000" - "192.168.1.10:8000" - "127.0.0.1:8000" - "127.0.0.2:8000" - "127.0.0.3:8000" - "127.0.0.4:8000" apt.mydomain.com: paths: "/": servers: - "192.168.1.10:443" "/.well-known/acme-challenge": healthcheck: false servers: - "127.0.0.1:8001" rdr.mydomain.com: paths: "/": redirect_to: "https://som.other.domain:6194" healthcheck: false servers: - "127.0.0.1:8080"