We had our Cloudflare access setup to have a Login method using One-Time Pin. Everything works the way we want, wherein our colleagues can continue accessing our non-public servers from outside our company office as long as they provide their email for OTP verification.
However, we are using Docker to run the dev environment of our web applications on Windows OS. After entering their email and using the OTP, they are able to access our servers directly via browser and through Postman, but localhost running on Docker cannot access the servers through REST call. Upon reading the response from browser’s dev tools, it has a response code of 302 and tries to redirect to cloudflareaccess.com/cdn-cgi/access/login/…
The temporary solution we did was to include the developer’s specific IP in the AllowedIP (bypass), but we always had to ensure we remove this at end of day.
So the question is, is there a way to allow our Dockerised localhost machines accessing web services under protection of Cloudflare OTP? Once we submit the OTP, our Dockerised localhost should also be able to access those web services.