HTTP Overview

HTTP Middlewares Overview

~~forward~~HTTP ~~auth~~Middlewares in Traefik let you modify requests and responses on the fly. You can configure them in multiple ways (Docker labels, TOML, YAML, etc.).

~~https:~~

Configuration Example in a `docker-compose.yaml`


# As a Docker Label
whoami:
  # A container that exposes an API to show its IP address
  image: traefik/whoami
  labels:
    # Create a middleware named `foo-add-prefix`
    - "traefik.http.middlewares.foo-add-prefix.addprefix.prefix=/foo"
    # Apply the middleware named `foo-add-prefix` to the router named `router1`
    - "traefik.http.routers.router1.middlewares=foo-add-prefix@docker"

Configuration Example in a `dynamic.toml`


[http.routers]
  [http.routers.router1]
    service = "service1"
    middlewares = ["foo-add-prefix"]
    rule = "Host(`example.com`)"

[http.middlewares]
  [http.middlewares.foo-add-prefix.addPrefix]
    prefix = "/foo"

[http.services]
  [http.services.service1]
    [http.services.service1.loadBalancer]

      [[http.services.service1.loadBalancer.servers]]
        url = "http://doc.traefik.io/traefik/middlewares/http/forwardauth/
127.0.0.1:80"

Configuration Example in a `dynamic.yml`


http:
  routers:
    router1:
      service: service1
      middlewares:
        - "foo-add-prefix"
      rule: "Host(`example.com`)"

  middlewares:
    foo-add-prefix:
      addPrefix:
        prefix: "/foo"

  services:
    service1:
      loadBalancer:
        servers:
          - url: "http://127.0.0.1:80"

Available HTTP Middlewares

Middleware	Purpose	Area
AddPrefix	Adds a Path Prefix	Path Modifier
BasicAuth	Adds Basic Authentication	Security, Authentication
Buffering	Buffers the request/response	Request Lifecycle
Chain	Combines multiple pieces of middleware	Misc
CircuitBreaker	Prevents calling unhealthy services	Request Lifecycle
Compress	Compresses the response	Content Modifier
ContentType	Handles Content-Type auto-detection	Misc
DigestAuth	Adds Digest Authentication	Security, Authentication
Errors	Defines custom error pages	Request Lifecycle
ForwardAuth	Delegates Authentication	Security, Authentication
Headers	Adds / Updates headers	Security
IPAllowList	Limits the allowed client IPs	Security, Request lifecycle
InFlightReq	Limits the number of simultaneous connections	Security, Request lifecycle
PassTLSClientCert	Adds Client Certificates in a Header	Security
RateLimit	Limits the call frequency	Security, Request lifecycle
RedirectScheme	Redirects based on scheme	Request lifecycle
RedirectRegex	Redirects based on regex	Request lifecycle
ReplacePath	Changes the path of the request	Path Modifier
ReplacePathRegex	Changes the path of the request	Path Modifier
Retry	Automatically retries in case of error	Request lifecycle
StripPrefix	Changes the path of the request	Path Modifier
StripPrefixRegex	Changes the path of the request	Path Modifier

For even more options, check out the community-contributed plugins in the plugin catalog.