BPE Reverse Proxy

DSF-TeamLess than 1 minute

Purpose

The DSF BPE Reverse Proxy is an Apache HTTP Server based front for the BPE Server. It terminates TLS for the BPE's web UI and OIDC-authenticated administrative endpoints, and forwards authenticated requests to the BPE backend. Unlike the FHIR Reverse Proxy, it is intended for internal operator and administrator access only, not for DSF-to-DSF traffic.

Docker Image

Registry: ghcr.io/datasharingframework/bpe_proxy
Tag for this release: 2.1.0

Verify Image Signature

Verify the signed image before deploying. See How to Verify Image Signatures for prerequisites, SBOM verification, and troubleshooting.

cosign verify \
  ghcr.io/datasharingframework/bpe_proxy:2.1.0@sha256:c67da4a1720ea75a383764db2bf25619fe70f57773b1069029f5b49588eb1ecc \
  --certificate-identity-regexp "https://github.com/datasharingframework/dsf/.*" \
  --certificate-oidc-issuer "https://token.actions.githubusercontent.com"

Useful Pages

Configuration Parameters
How to Verify Image Signatures