I’d like to use haproxy as login portal, has anyone done a configuration like
I’ve got some users connecting from dynamic IPs to access a 3rd party content
management system which I don’t want to expose globally and would like to
authenticate them not by IP, but by session/actual user before they actually can
try to login to the real system.
My idea is that haproxy is forwarding all unauthenticated requests to a portal
server, and after successfully logging in, that system sets a specific cookie
which I can match to in haproxy and forward authenticated users to the real
server. It’s not possible to access stick-tables from a external source, e.g.
via admin socket for this, correct? Maybe I could code the login portal in LUA
and write to a data structure?
This is just a quick idea, I didn’t look deeply into this yet, and was wondering
if anyone had done it before or has some ideas.