HAProxy (or any lb) - can you redirect based on path without SSL termination?

Asked Nov 20 '18 at 00:22

Active Nov 20 '18 at 00:22

Viewed 197 times

I'm looking to decouple the marketing (logged out) portion of a website from the main logged-in app, without having to use subdomains.

I believe I can do this with ACLs in HAProxy, and potentially with other solutions like ELB. However I do not have access to the SSL certificate on the logged in app (generated by a platform as a service).

Is this possible to do without terminating SSL at the load balancer level? If not, how would you go about doing this?

asked Nov 20 '18 at 00:22

Msencenb

Not possible. Get a Letsencrypt certificate and use that on your lb. – wurtel Nov 20 '18 at 10:44
That's what I was afraid of (and obvious after reading more). I will have to terminate at the load balancer to do any sort of url or inspection.. that's the whole point of https – Msencenb Nov 21 '18 at 18:35

HAProxy (or any lb) - can you redirect based on path without SSL termination?

0 Answers0