Concourse behind Traefik

Trying to get concourse to come up behind traefik but its failing due to certificate issue.

I’ve looked around and there seems to be no way to tell concourse to “trust” self-signed certs, while testing my automation, i’m pointing acme to its staging server, this gets me a “Fake LE” certificate which is not trusted by Concourse and the container dies at this point.

I’m also integrating keycloak with concourse, and its connection is not trusted either:

Failed to open connector oidc: failed to open connector: failed to create connector oidc: failed to get provider: Get “https://keycloak.MYDOMAIN.TLD/auth/realms/CI/.well-known/openid-configuration”: x509: certificate signed by unknown authority

I was not able to find it on the documentation but I did find this value on a github issue:

CONCOURSE_OIDC_SKIP_SSL_VALIDATION: “true”

Passing that ENV var to the container allowed the container to trust the “Fake LE” Lets Encrypt certificate to communicate with keycloak while configuring OIDC.

Hopefully this helps someone down the road.