Load Balancer with SSL Termination and x509 Client Certificates

I’d like to configure the Rancher HAProxy load balancer for SSL termination so that it passes information from client certificates to backend services via HTTP headers.

I understand that it is possible to do this with HAProxy (see this HAProxy blog posting SSL CLIENT CERTIFICATE INFORMATION IN HTTP HEADERS AND LOGS) but what isn’t clear to me is if there is a way to configure Rancher’s HAProxy to do this.

Rancher provides the ability to customize the global and defaults HAProxy configuration sections but my understanding from reading the HAProxy documentation is that the http-request keywords that I need to set aren’t supported in the defaults section.

Is there a way for me to configure Rancher to pass these headers?

Thanks in advance

@bhcohen we are going to add support for putting custom parameters to frontend and backend sections of haproxy config soon after GA. Here is the ticket to keep track of the refactoring work: https://github.com/rancher/rancher/issues/2179