v2.11.43

📅 Apr 22, 2026📦 traefikView on GitHub →

🐛 6 fixes🔧 3 symbols

Summary

This release focuses on numerous bug fixes across authentication middleware, header handling, and Kubernetes CRD behavior. Users should review the migration guide for potential necessary adjustments.

Migration Steps

Review the migration guide at https://doc.traefik.io/traefik/v2.11/migration/v2/#v21143.

🐛 Bug Fixes

Removed map lookup which caused the basic auth notFoundSecret to be empty.
Fixed trustForwardHeader behavior on the forward auth middleware.
Cleaned up and made ForwardAuth logs consistent.
Removed untrusted X headers containing underscores.
Sanitized the request URL after stripping the prefix.
The Kubernetes CRD now correctly honors allowCrossNamespace setting with chain middleware.

Affected Symbols

basic auth middleware forward auth middleware chain middleware CRD