Reverse Proxy Design - seoulsky/safe-zone-system GitHub Wiki

Overview

The reverse proxy is responsible for proxying requests to backend services.
HTTP requests between the client and the reverse proxy will be encrypted using TLS, while proxied requests to the other backend services through the reverse proxy will not be encrypted between the reverse proxy and the service.
Other services will not have any public ports and all requests must first go through the reverse proxy.

The reverse proxy will proxy requests as follows:

/auth/* -> Keycloak
/cms/* -> CMS
/mibs/* -> MIBS
/* -> Web services. Any requests not proxied to /auth, /cms, /mibs will be directed to the web service.