New Routing Reference Documentation #11330

sheddy-traefik · 2024-12-10T14:34:32Z

What does this PR do?

Following a series of discussions with @emilevauge and @nmengin, we decided to create a new reference section in the documentation. This PR replaces the previous "Dynamic Configuration" with a new menu item called "Routing Configuration".

This PR has also been rebased on branch v3.2

Motivation

The motivation behind this pull request is to have a more strucutured reference documentation for Traefik proxy. This new change brings a more accurate and well defined reference section in the docs.

More

Added/updated documentation

youkoulayley · 2025-01-17T09:30:55Z

docs/content/reference/routing-configuration/http/middlewares/overview.md

+| Middleware                                | Purpose                                           | Area                        |
+|-------------------------------------------|---------------------------------------------------|-----------------------------|
+| [AddPrefix](addprefix.md)                 | Adds a Path Prefix                                | Path Modifier               |
+| [BasicAuth](basicauth.md)                 | Adds Basic Authentication                         | Security, Authentication    |
+| [Buffering](buffering.md)                 | Buffers the request/response                      | Request Lifecycle           |
+| [Chain](chain.md)                         | Combines multiple pieces of middleware            | Misc                        |
+| [CircuitBreaker](circuitbreaker.md)       | Prevents calling unhealthy services               | Request Lifecycle           |
+| [Compress](compress.md)                   | Compresses the response                           | Content Modifier            |
+| [ContentType](contenttype.md)             | Handles Content-Type auto-detection               | Misc                        |
+| [DigestAuth](digestauth.md)               | Adds Digest Authentication                        | Security, Authentication    |
+| [Errors](errorpages.md)                   | Defines custom error pages                        | Request Lifecycle           |
+| [ForwardAuth](forwardauth.md)             | Delegates Authentication                          | Security, Authentication    |
+| [GrpcWeb](grpcweb.md)                     | Converts gRPC Web requests to HTTP/2 gRPC requests.                           | Reqyest                    |
+| [Headers](headers.md)                     | Adds / Updates headers                            | Security                    |
+| [IPAllowList](ipallowlist.md)             | Limits the allowed client IPs                     | Security, Request lifecycle |
+| [InFlightReq](inflightreq.md)             | Limits the number of simultaneous connections     | Security, Request lifecycle |
+| [PassTLSClientCert](passtlsclientcert.md) | Adds Client Certificates in a Header              | Security                    |
+| [RateLimit](ratelimit.md)                 | Limits the call frequency                         | Security, Request lifecycle |
+| [RedirectScheme](redirectscheme.md)       | Redirects based on scheme                         | Request lifecycle           |
+| [RedirectRegex](redirectregex.md)         | Redirects based on regex                          | Request lifecycle           |
+| [ReplacePath](replacepath.md)             | Changes the path of the request                   | Path Modifier               |
+| [ReplacePathRegex](replacepathregex.md)   | Changes the path of the request                   | Path Modifier               |
+| [Retry](retry.md)                         | Automatically retries in case of error            | Request lifecycle           |
+| [StripPrefix](stripprefix.md)             | Changes the path of the request                   | Path Modifier               |
+| [StripPrefixRegex](stripprefixregex.md)   | Changes the path of the request                   | Path Modifier               |
+


Suggested change

| Middleware | Purpose | Area |

|-------------------------------------------|---------------------------------------------------|-----------------------------|

| [AddPrefix](addprefix.md) | Adds a Path Prefix | Path Modifier |

| [BasicAuth](basicauth.md) | Adds Basic Authentication | Security, Authentication |

| [Buffering](buffering.md) | Buffers the request/response | Request Lifecycle |

| [Chain](chain.md) | Combines multiple pieces of middleware | Misc |

| [CircuitBreaker](circuitbreaker.md) | Prevents calling unhealthy services | Request Lifecycle |

| [Compress](compress.md) | Compresses the response | Content Modifier |

| [ContentType](contenttype.md) | Handles Content-Type auto-detection | Misc |

| [DigestAuth](digestauth.md) | Adds Digest Authentication | Security, Authentication |

| [Errors](errorpages.md) | Defines custom error pages | Request Lifecycle |

| [ForwardAuth](forwardauth.md) | Delegates Authentication | Security, Authentication |

| [GrpcWeb](grpcweb.md) | Converts gRPC Web requests to HTTP/2 gRPC requests. | Reqyest |

| [Headers](headers.md) | Adds / Updates headers | Security |

| [IPAllowList](ipallowlist.md) | Limits the allowed client IPs | Security, Request lifecycle |

| [InFlightReq](inflightreq.md) | Limits the number of simultaneous connections | Security, Request lifecycle |

| [PassTLSClientCert](passtlsclientcert.md) | Adds Client Certificates in a Header | Security |

| [RateLimit](ratelimit.md) | Limits the call frequency | Security, Request lifecycle |

| [RedirectScheme](redirectscheme.md) | Redirects based on scheme | Request lifecycle |

| [RedirectRegex](redirectregex.md) | Redirects based on regex | Request lifecycle |

| [ReplacePath](replacepath.md) | Changes the path of the request | Path Modifier |

| [ReplacePathRegex](replacepathregex.md) | Changes the path of the request | Path Modifier |

| [Retry](retry.md) | Automatically retries in case of error | Request lifecycle |

| [StripPrefix](stripprefix.md) | Changes the path of the request | Path Modifier |

| [StripPrefixRegex](stripprefixregex.md) | Changes the path of the request | Path Modifier |

| Middleware | Purpose | Area |

|-------------------------------------------|-----------------------------------------------------|-----------------------------|

| [AddPrefix](addprefix.md) | Adds a Path Prefix | Path Modifier |

| [BasicAuth](basicauth.md) | Adds Basic Authentication | Security, Authentication |

| [Buffering](buffering.md) | Buffers the request/response | Request Lifecycle |

| [Chain](chain.md) | Combines multiple pieces of middleware | Misc |

| [CircuitBreaker](circuitbreaker.md) | Prevents calling unhealthy services | Request Lifecycle |

| [Compress](compress.md) | Compresses the response | Content Modifier |

| [ContentType](contenttype.md) | Handles Content-Type auto-detection | Misc |

| [DigestAuth](digestauth.md) | Adds Digest Authentication | Security, Authentication |

| [Errors](errorpages.md) | Defines custom error pages | Request Lifecycle |

| [ForwardAuth](forwardauth.md) | Delegates Authentication | Security, Authentication |

| [GrpcWeb](grpcweb.md) | Converts gRPC Web requests to HTTP/2 gRPC requests. | Request Lifecycle |

| [Headers](headers.md) | Adds / Updates headers | Security |

| [IPAllowList](ipallowlist.md) | Limits the allowed client IPs | Security, Request lifecycle |

| [InFlightReq](inflightreq.md) | Limits the number of simultaneous connections | Security, Request lifecycle |

| [PassTLSClientCert](passtlsclientcert.md) | Adds Client Certificates in a Header | Security |

| [RateLimit](ratelimit.md) | Limits the call frequency | Security, Request lifecycle |

| [RedirectScheme](redirectscheme.md) | Redirects based on scheme | Request lifecycle |

| [RedirectRegex](redirectregex.md) | Redirects based on regex | Request lifecycle |

| [ReplacePath](replacepath.md) | Changes the path of the request | Path Modifier |

| [ReplacePathRegex](replacepathregex.md) | Changes the path of the request | Path Modifier |

| [Retry](retry.md) | Automatically retries in case of error | Request lifecycle |

| [StripPrefix](stripprefix.md) | Changes the path of the request | Path Modifier |

| [StripPrefixRegex](stripprefixregex.md) | Changes the path of the request | Path Modifier |

youkoulayley · 2025-01-17T09:53:37Z

docs/content/reference/routing-configuration/http/middlewares/passtlsclientcert.md

+description: "In Traefik Proxy's HTTP middleware, the PassTLSClientCert adds selected data from passed client TLS certificates to headers. Read the technical documentation."
+---
+
+The `passTLSClientCert` middleware adds the selected data from the passed client TLS certificate to a header


Suggested change

The `passTLSClientCert` middleware adds the selected data from the passed client TLS certificate to a header

The `passTLSClientCert` middleware adds the selected data from the passed client TLS certificate to a header.

youkoulayley · 2025-01-17T10:06:32Z

docs/content/reference/routing-configuration/http/middlewares/ratelimit.md

+The rate is defined by dividing `average` by `period`.
+For a rate below 1 req/s, define a `period` larger than a second
+
+The middleware is based on a [token bucket](https://en.wikipedia.org/wiki/Token_bucket) implementation.


Suggested change

The middleware is based on a [token bucket](https://en.wikipedia.org/wiki/Token_bucket) implementation.

It's already been said in the introduction to this page, so perhaps we don't need to repeat it?

fair enough

youkoulayley · 2025-01-17T10:08:05Z

docs/content/reference/routing-configuration/http/middlewares/ratelimit.md

+For a rate below 1 req/s, define a `period` larger than a second
+
+The middleware is based on a [token bucket](https://en.wikipedia.org/wiki/Token_bucket) implementation.
+In this analogy, the `average` and `period` parameters define the **rate** at which the bucket refills, and the `burst` is the size (volume) of the bucket


Suggested change

In this analogy, the `average` and `period` parameters define the **rate** at which the bucket refills, and the `burst` is the size (volume) of the bucket

In this analogy, the `average` and `period` parameters define the **rate** at which the bucket refills, and the `burst` is the size (volume) of the bucket.

Maybe put this in the introduction after the token bucket part?

youkoulayley · 2025-01-17T10:09:01Z

docs/content/reference/routing-configuration/http/middlewares/ratelimit.md

+In the example above, the middleware allows up to 100 connections in parallel (`burst`).
+Each connection consumes a token, once the 100 tokens are consumed, the other ones are blocked until at least one token is available in the bucket.
+
+When the bucket is not full, on token is generated every 10 seconds (6 every 1 minutes (`period` / `average`))


Suggested change

When the bucket is not full, on token is generated every 10 seconds (6 every 1 minutes (`period` / `average`))

When the bucket is not full, one token is generated every 10 seconds (6 every 1 minutes (`period` / `average`)).

youkoulayley · 2025-01-17T10:48:17Z

docs/content/reference/routing-configuration/http/middlewares/redirectregex.md

+
+
+
+## Configuration Examples


Suggested change

## Configuration Examples

## Configuration Examples

sdelicata · 2025-01-17T08:51:07Z

docs/content/reference/routing-configuration/http/middlewares/basicauth.md

+
+- If both `users` and `usersFile` are provided, the two are merged. 
+The contents of `usersFile` have precedence over the values in `users`.
+- For security reasons, the field `users` doesn't exist for Kubernetes IngressRoute, and one should use the `secret` field instead.


Suggested change

- For security reasons, the field `users` doesn't exist for Kubernetes IngressRoute, and one should use the `secret` field instead.

Because it does not make much sense to refer to a file path on Kubernetes, the `usersFile` field doesn't exist for Kubernetes IngressRoute, and one should use the `secret` field instead.

I'd rewrite this statement, i don't agree with how it sounds

sdelicata · 2025-01-17T09:02:51Z

docs/content/reference/routing-configuration/http/middlewares/addprefix.md

+
+| Field  | Description                                                                                                                                                                                                | Default | Required |
+|:-----------------------------|:-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|:--------|:---------|
+| `prefix` | String to add **before** the current path in the requested URL. It should include a leading slash (`/`). | | Yes |


sdelicata · 2025-01-17T09:06:17Z

docs/content/reference/routing-configuration/http/middlewares/chain.md

+
+| Field | Description | Default | Required |
+|:------|:------------|:--------|:---------|
+| `middlewares`  | List of middlewares to chain.<br /> The middlewares have to be in the same namespace as the `chain` middleware. |  | Yes |


| middlewares | List of middlewares to chain.
The middlewares have to be in the same namespace as the chain middleware. | [] | Yes |

sdelicata · 2025-01-17T09:26:05Z

docs/content/reference/routing-configuration/http/middlewares/circuitbreaker.md

+| Field | Description | Default | Required |
+|:------|:------------|:--------|:---------|
+| `expression` | Condition to open the circuit breaker and applies the fallback mechanism instead of calling your services.<br />More information [here](#expression) | 100ms | No |
+| `checkPeriod` | The interval between successive checks of the circuit breaker condition (when in standby state). | 100ms | No |


In the configuration options table we're talking about the circuit breaker "state" but at the bottom of the page we're using "status". It could be a good idea to standardize the term.

sdelicata · 2025-01-17T09:37:30Z

docs/content/reference/routing-configuration/http/middlewares/compress.md

+|`encodings` | Specifies the list of supported compression encodings. At least one encoding value must be specified, and valid entries are `zstd` (Zstandard), `br` (Brotli), and `gzip` (Gzip). The order of the list also sets the priority, the top entry has the highest priority. | zstd, br, gzip | No |
+| `includedContentTypes` | List of content types to compare the `Content-Type` header of the responses before compressing. <br /> The responses with content types defined in `includedContentTypes` are compressed. <br /> Content types are compared in a case-insensitive, whitespace-ignored manner.<br /> **The `excludedContentTypes` and `includedContentTypes` options are mutually exclusive.** | "" | No |
+| `minResponseBodyBytes` | `Minimum amount of bytes a response body must have to be compressed. <br />Responses smaller than the specified values will **not** be compressed. | 1024 | No |
+


The defaultEncoding option is missing here.

sdelicata · 2025-01-17T09:51:40Z

docs/content/reference/routing-configuration/http/middlewares/compress.md

+
+![Compress](../../../../assets/img/middleware/compress.png)
+
+The `compress` middleware compresses response. It supports Gzip and Brotli compression


Suggested change

The `compress` middleware compresses response. It supports Gzip and Brotli compression

The `compress` middleware compresses response. It supports Gzip, Brotli and Zstandard compression

sdelicata · 2025-01-17T09:53:10Z

docs/content/reference/routing-configuration/http/middlewares/compress.md

+
+Responses are compressed when the following criteria are all met:
+
+- The `Accept-Encoding` request header contains `gzip`, `*`, and/or `br` with or without [quality values](https://developer.mozilla.org/en-US/docs/Glossary/Quality_values).


Zstandard is missing here too.

lbenguigui · 2025-01-17T08:47:57Z

docs/content/reference/routing-configuration/http/middlewares/stripprefixregex.md

+
+| Field                        | Description                                                                                                                                                                                                | Default | Required |
+|:-----------------------------|:-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|:--------|:---------|
+| `regex` | List of regular expressions to match the path prefix from the request URL.<br /> For instance, `/products` also matches `/products/shoes` and `/products/shirts`.<br />oOre information [here](#regex). | | No |


Suggested change

| `regex` | List of regular expressions to match the path prefix from the request URL. For instance, `/products` also matches `/products/shoes` and `/products/shirts`. oOre information [here](#regex). | | No |

| `regex` | List of regular expressions to match the path prefix from the request URL. For instance, `/products` also matches `/products/shoes` and `/products/shirts`. More information [here](#regex). | | No |

lbenguigui · 2025-01-17T09:13:31Z

docs/content/reference/routing-configuration/http/middlewares/stripprefixregex.md

+description: "In Traefik Proxy's HTTP middleware, StripPrefixRegex removes prefixes from paths before forwarding requests, using regex. Read the technical documentation."
+---
+
+The `stripPrefixRegex` middleware strips the matching path prefix and stores it in a `X-Forwarded-Prefix` header.


I believe it should be "an X-Forwarded-Prefix" instead of "a X-Forwarded-Prefix"

lbenguigui · 2025-01-17T09:21:12Z

docs/content/reference/routing-configuration/http/middlewares/stripprefixregex.md

+
+    Use a `stripPrefixRegex` middleware if your backend listens on the root path (`/`) but should be exposed on a specific prefix.
+
+## Configuration Example


I believe examples are missing

lbenguigui · 2025-01-17T10:28:17Z

docs/content/reference/routing-configuration/http/middlewares/stripprefix.md

+
+!!! tip
+
+    Use a `StripPrefix` middleware if your backend listens on the root path (`/`) but should be exposed on a specific prefix


Suggested change

Use a `StripPrefix` middleware if your backend listens on the root path (`/`) but should be exposed on a specific prefix

Use a `StripPrefix` middleware if your backend listens on the root path (`/`) but should be exposed on a specific prefix.

lbenguigui · 2025-01-17T10:32:39Z

docs/content/reference/routing-configuration/http/middlewares/stripprefix.md

+description: "In Traefik Proxy's HTTP middleware, StripPrefix removes prefixes from paths before forwarding requests. Read the technical documentation."
+---
+
+The `stripPrefix` middleware strips the matching path prefix and stores it in a `X-Forwarded-Prefix` header.


Suggested change

The `stripPrefix` middleware strips the matching path prefix and stores it in a `X-Forwarded-Prefix` header.

The `stripPrefix` middleware strips the matching path prefix and stores it in an `X-Forwarded-Prefix` header.

lbenguigui · 2025-01-17T13:18:10Z

docs/content/reference/routing-configuration/http/middlewares/replacepath.md

+The `replacePath1 middleware will:
+
+- Replace the actual path with the specified one.
+- Store the original path in a `X-Replaced-Path` header


Suggested change

- Store the original path in a `X-Replaced-Path` header

- Store the original path in an `X-Replaced-Path` header

lbenguigui · 2025-01-17T13:19:42Z

docs/content/reference/routing-configuration/http/middlewares/replacepath.md

+description: "In Traefik Proxy's HTTP middleware, ReplacePath updates paths before forwarding requests. Read the technical documentation."
+---
+
+The `replacePath1 middleware will:


Suggested change

The `replacePath1 middleware will:

The `replacePath` middleware will:

lbenguigui · 2025-01-17T13:27:59Z

docs/content/reference/routing-configuration/http/middlewares/replacepath.md

+  name: test-replacepath
+spec:
+  replacePath:
+    path: /foo


Suggested change

path: /foo

path: "/foo"

lbenguigui · 2025-01-17T13:28:37Z

docs/content/reference/routing-configuration/http/middlewares/replacepath.md

+- "traefik.http.middlewares.test-replacepath.replacepath.path=/foo"
+```
+
+## Configuration Option


Suggested change

## Configuration Option

## Configuration Options

lbenguigui · 2025-01-17T13:31:36Z

docs/content/reference/routing-configuration/http/middlewares/redirectscheme.md

+description: "In Traefik Proxy's HTTP middleware, RedirectScheme redirects clients to different schemes/ports. Read the technical documentation."
+---
+
+The RedirectScheme middleware redirects the request if the request scheme is different from the configured scheme.


Suggested change

The RedirectScheme middleware redirects the request if the request scheme is different from the configured scheme.

The `redirectScheme` middleware redirects the request if the request scheme is different from the configured scheme.

jspdown · 2025-01-17T09:31:03Z

docs/content/reference/routing-configuration/http/middlewares/contenttype.md

+!!! info
+
+    The scope of the Content-Type middleware is the MIME type detection done by the core of Traefik (the server part).  
+    Therefore, it has no effect against any other `Content-Type` header modifications (e.g.: in another middleware such as compress).


I don't understand this paragraph. It's not something you wrote but I think it's a good opportunity to improve this. I think we should rather say something like:

If any middleware, no matter its position in the chain, sets the Content-Type header (e.g, headers, compress, ... middlewares), the contentType middleware will have no effect.

jspdown · 2025-01-17T09:33:39Z

docs/content/reference/routing-configuration/http/middlewares/contenttype.md

+# Enable auto-detection
+[http.middlewares]
+  [http.middlewares.autodetect.contentType]
+


Suggested change

jspdown · 2025-01-17T09:59:00Z

docs/content/reference/routing-configuration/http/middlewares/digestauth.md

+
+| Field      | Description    | Default | Required |
+|:-----------|:---------------------------------------------------------------------------------|:--------|:---------|
+| `users` | Array of authorized users. Each user must be declared using the `name:realm:encoded-password` format.<br /> The option `users` supports Kubernetes secrets.<br />(More information [here](#users))| ""      | No      |


Suggested change

| `users` | Array of authorized users. Each user must be declared using the `name:realm:encoded-password` format. The option `users` supports Kubernetes secrets. (More information [here](#users))| "" | No |

| `users` | Array of authorized users. Each user must be declared using the `name:realm:encoded-password` format. The option `users` supports Kubernetes secrets. (More information [here](#users))| [] | No |

jspdown · 2025-01-17T10:02:19Z

docs/content/reference/routing-configuration/http/middlewares/digestauth.md

+
+### users
+
+- If both `users` and `usersFile` are provided, the two are merged. The contents of `usersFile` have precedence over the values in `users`.


Maybe we can merge the users and usersFile section since they explain the same thing.

jspdown · 2025-01-17T10:02:35Z

docs/content/reference/routing-configuration/http/middlewares/digestauth.md

+- If both `users` and `usersFile` are provided, the two are merged. The contents of `usersFile` have precedence over the values in `users`.
+- For security reasons, the field `users` doesn't exist for Kubernetes IngressRoute, and one should use the `secret` field instead.
+
+#### Passwords format


WDYT about moving this section before users. It looks like the most important think to know about this middleware.

Suggested change

#### Passwords format

### Passwords format

jspdown · 2025-01-17T14:29:05Z

docs/content/reference/routing-configuration/http/middlewares/headers.md

+`contentTypeNosniff`            | Set `contentTypeNosniff` to true to add the `X-Content-Type-Options` header with the value `nosniff`.  | false     | No
+`browserXssFilter`              | Set `browserXssFilter` to true to add the `X-XSS-Protection` header with the value `1; mode=block`.  | false     | No
+`customBrowserXSSValue`         | allows the `X-XSS-Protection` header value to be set with a custom value. This overrides the `BrowserXssFilter` option.   | | No
+`contentSecurityPolicy`         | allows the `Content-Security-Policy` header value to be set with a custom value.           | | No


jspdown · 2025-01-17T14:29:23Z

docs/content/reference/routing-configuration/http/middlewares/headers.md

+`browserXssFilter`              | Set `browserXssFilter` to true to add the `X-XSS-Protection` header with the value `1; mode=block`.  | false     | No
+`customBrowserXSSValue`         | allows the `X-XSS-Protection` header value to be set with a custom value. This overrides the `BrowserXssFilter` option.   | | No
+`contentSecurityPolicy`         | allows the `Content-Security-Policy` header value to be set with a custom value.           | | No
+`contentSecurityPolicyReportOnly` | allows the `Content-Security-Policy-Report-Only` header value to be set with a custom value.    |    | No


Suggested change

`contentSecurityPolicyReportOnly` | allows the `Content-Security-Policy-Report-Only` header value to be set with a custom value. | | No

`contentSecurityPolicyReportOnly` | allows the `Content-Security-Policy-Report-Only` header value to be set with a custom value. | "" | No

jspdown · 2025-01-17T14:29:49Z

docs/content/reference/routing-configuration/http/middlewares/headers.md

+`customBrowserXSSValue`         | allows the `X-XSS-Protection` header value to be set with a custom value. This overrides the `BrowserXssFilter` option.   | | No
+`contentSecurityPolicy`         | allows the `Content-Security-Policy` header value to be set with a custom value.           | | No
+`contentSecurityPolicyReportOnly` | allows the `Content-Security-Policy-Report-Only` header value to be set with a custom value.    |    | No
+`publicKey`                     | Implements HPKP for certificate pinning.         | | No


jspdown · 2025-01-17T14:30:45Z

docs/content/reference/routing-configuration/http/middlewares/headers.md

+`contentSecurityPolicy`         | allows the `Content-Security-Policy` header value to be set with a custom value.           | | No
+`contentSecurityPolicyReportOnly` | allows the `Content-Security-Policy-Report-Only` header value to be set with a custom value.    |    | No
+`publicKey`                     | Implements HPKP for certificate pinning.         | | No
+`referrerPolicy`                | Controls forwarding of `Referer` header.         | | No


jspdown · 2025-01-17T14:32:25Z

docs/content/reference/routing-configuration/http/middlewares/headers.md

+`contentSecurityPolicyReportOnly` | allows the `Content-Security-Policy-Report-Only` header value to be set with a custom value.    |    | No
+`publicKey`                     | Implements HPKP for certificate pinning.         | | No
+`referrerPolicy`                | Controls forwarding of `Referer` header.         | | No
+`permissionsPolicy`             | allows sites to control browser features.                   | None      | No


rtribotte · 2024-12-17T10:30:28Z

docs/content/reference/routing-configuration/dynamic-configuration-methods.md

+
+# Providing Dynamic Configuration to Traefik
+
+Traefik relies on dynamic configuration to discover the services it needs to route traffic to. There are several ways to provide this dynamic configuration, depending on your environment and preferences. This guide covers the different methods available:


In this sentence, I find that using "discover" to be a bit misleading.
Traefik, through its providers, discovers services that are holding their dynamic configuration.
Since we are using the discovery concept to reflect how Traefik is actually getting the dynamic configuration, I think saying that the dynamic configuration helps Traefik to discover services is then confusing.

rtribotte · 2024-12-20T13:20:45Z

docs/content/reference/routing-configuration/dynamic-configuration-methods.md

+
+- File Provider: Use TOML or YAML files.
+- Docker and ECS Providers: Use container labels.
+- Other Providers: Use tags or Annotations


Maybe this part could better emphasis Kubernetes providers.

rtribotte · 2024-12-20T13:21:28Z

docs/content/reference/routing-configuration/dynamic-configuration-methods.md

+
+## Using the File Provider
+
+The File provider allows you to define dynamic configuration in static files using either TOML or YAML syntax. This method is ideal for environments where services are not automatically discovered or when you prefer to manage configurations manually.


Suggested change

The File provider allows you to define dynamic configuration in static files using either TOML or YAML syntax. This method is ideal for environments where services are not automatically discovered or when you prefer to manage configurations manually.

The File provider allows you to define dynamic configuration in static files using either TOML or YAML syntax. This method is ideal for environments where services cannot be automatically discovered or when you prefer to manage configurations manually.

rtribotte · 2024-12-20T14:20:31Z

docs/content/reference/routing-configuration/dynamic-configuration-methods.md

+providers:
+  file:
+    directory: "/path/to/dynamic/conf"
+```
+
+```toml tab="TOML"
+[providers.file]
+  filename = "/path/to/your/configuration/file.toml"
+```


Both examples are different, this would be better to stick to file or directory in both.

rtribotte · 2024-12-20T14:30:24Z

docs/content/reference/routing-configuration/http/load-balancing/serverstransport.md

@@ -0,0 +1,43 @@
+---
+title: "ServersTransport"
+description: "ServersTransport allows configuring the connection between Traefik and the HTTP servers in Kubernetes."


Suggested change

description: "ServersTransport allows configuring the connection between Traefik and the HTTP servers in Kubernetes."

description: "ServersTransport allows configuring the connection between Traefik and the HTTP servers."

rtribotte · 2025-01-17T13:09:38Z

docs/content/reference/routing-configuration/http/load-balancing/service.md

+
+The WRR is able to load balance the requests between multiple services based on weights.
+
+This strategy is only available to load balance between services and not between servers.


Suggested change

This strategy is only available to load balance between services and not between servers.

This strategy is only available to load balance between services and not between servers. To load balance between servers based on weights, the Load Balancer service should be used instead.

rtribotte · 2025-01-17T13:39:57Z

docs/content/reference/routing-configuration/http/load-balancing/service.md

+???+ "Load Balancing -- Using the File Provider"
+


Suggested change

???+ "Load Balancing -- Using the File Provider"

To be consistent within this page the examples should probably always shown.

rtribotte · 2025-01-17T14:24:23Z

docs/content/reference/routing-configuration/http/tls/tls-certificates.md

+| `caServer` | Defines the CA server to use. More information [here](#caserver). | "https://acme-v02.api.letsencrypt.org/directory" | Yes |
+| `storage` | Defines the location where the ACME certificates are saved to. More information [here](#storage) | "acme.json" | Yes |
+| `certificatesDuration` | Defines the renewal period and interval for a certificate. More information [here](#certificatesduration) | 2160 | No |
+| `preferredChain` | Defines the preferred chain to use. | 2160 | No |


Suggested change

| `preferredChain` | Defines the preferred chain to use. | 2160 | No |

| `preferredChain` | Defines the preferred chain to use. If the CA offers multiple certificate chains, prefer the chain with an issuer matching this Subject Common Name. If no match, the default offered chain will be used.| "" | No |

rtribotte · 2025-01-17T14:26:20Z

docs/content/reference/routing-configuration/http/tls/tls-certificates.md

+| `certificatesDuration` | Defines the renewal period and interval for a certificate. More information [here](#certificatesduration) | 2160 | No |
+| `preferredChain` | Defines the preferred chain to use. | 2160 | No |
+| `keyType` | Defines the key type used for generating certificate private key. It supports 'EC256', 'EC384', 'RSA2048', 'RSA4096', 'RSA8192'. | RSA4096 | No |
+| `caCertificates` | Defines the the paths to PEM encoded CA Certificates that can be used to authenticate an ACME server with an HTTPS certificate not issued by a CA in the system-wide trusted root list. | [] | No |


Suggested change

| `caCertificates` | Defines the the paths to PEM encoded CA Certificates that can be used to authenticate an ACME server with an HTTPS certificate not issued by a CA in the system-wide trusted root list. | [] | No |

| `caCertificates` | Defines the paths to PEM encoded CA Certificates that can be used to authenticate an ACME server with an HTTPS certificate not issued by a CA in the system-wide trusted root list. | [] | No |

rtribotte · 2025-01-17T14:36:52Z

docs/content/reference/routing-configuration/http/tls/tls-certificates.md

+    clientAuthType: RequireAndVerifyClientCert
+```
+
+## Let's Encrypt


I think most of this section contains "Install documentation" and certificate resolvers, is it expected here?

mmatur · 2025-01-21T08:20:48Z

docs/content/reference/routing-configuration/other-providers/consul-catalog.md

+    ```yaml
+    traefik.tcp.services.myservice.loadbalancer.serverstransport=foobar@file
+    ```
+


WDYT to add a section for TCP Middlewares?

mmatur · 2025-01-21T08:29:12Z

docs/content/reference/routing-configuration/other-providers/consul-catalog.md

+
+    We recommend to *not* use tags to store sensitive data (certificates, credentials, etc).
+    Instead, we recommend to store sensitive data in a safer storage (secrets, file, etc).
+


There is no section ## Configuration Examples in this provider. Do we have to add one?

mmatur · 2025-01-21T08:33:39Z

docs/content/reference/routing-configuration/other-providers/docker.md

+    See [serverstransport](../http/load-balancing/serverstransport.md) for more information.
+
+    ```yaml
+    - "traefik.http.services.<service_name>.loadbalancer.serverstransport=foobar@file"


Suggested change

- "traefik.http.services.<service_name>.loadbalancer.serverstransport=foobar@file"

- "traefik.http.services.myservice.loadbalancer.serverstransport=foobar@file"

mmatur · 2025-01-21T08:38:40Z

docs/content/reference/routing-configuration/other-providers/docker.md

+    See [priority](../tcp/router/rules-and-priority.md) for more information.
+
+    ```yaml
+    - "traefik.tcp.routers.myrouter.priority=42"


Suggested change

- "traefik.tcp.routers.myrouter.priority=42"

- "traefik.tcp.routers.mytcprouter.priority=42"

mmatur · 2025-01-21T08:39:26Z

docs/content/reference/routing-configuration/other-providers/consul-catalog.md

+    See [serverstransport](../tcp/serverstransport.md) for more information.
+
+    ```yaml
+    traefik.tcp.services.myservice.loadbalancer.serverstransport=foobar@file


Suggested change

traefik.tcp.services.myservice.loadbalancer.serverstransport=foobar@file

traefik.tcp.services.mytcpservice.loadbalancer.serverstransport=foobar@file

mmatur · 2025-01-21T12:56:36Z