Set up authentik config for traefik
This commit is contained in:
Colin Hebert
@@ -37,6 +37,8 @@ services:
|
||||
target: /etc/traefik/dynamic/tls.yml
|
||||
- source: traefik_hsts
|
||||
target: /etc/traefik/dynamic/hsts.yml
|
||||
- source: traefik_authentik
|
||||
target: /etc/traefik/dynamic/authentik.yml
|
||||
secrets:
|
||||
- traefik_password # TODO: Replace with SSO
|
||||
- traefik_tls_cert
|
||||
@@ -104,6 +106,8 @@ configs:
|
||||
file: ${NASCOMPOSE_SERVICES?}/configs/traefik/dynamic/tls.yml
|
||||
traefik_hsts:
|
||||
file: ${NASCOMPOSE_SERVICES?}/configs/traefik/dynamic/hsts.yml
|
||||
traefik_authentik:
|
||||
file: ${NASCOMPOSE_SERVICES?}/configs/traefik/dynamic/authentik.yml
|
||||
|
||||
secrets:
|
||||
traefik_password:
|
||||
|
||||
18
docker/configs/traefik/dynamic/authentik.yml
Normal file
18
docker/configs/traefik/dynamic/authentik.yml
Normal file
@@ -0,0 +1,18 @@
|
||||
http:
|
||||
middlewares:
|
||||
authentik:
|
||||
forwardAuth:
|
||||
address: http://authentik:9000/outpost.goauthentik.io/auth/traefik
|
||||
trustForwardHeader: true
|
||||
authResponseHeaders:
|
||||
- X-authentik-username
|
||||
- X-authentik-groups
|
||||
- X-authentik-email
|
||||
- X-authentik-name
|
||||
- X-authentik-uid
|
||||
- X-authentik-jwt
|
||||
- X-authentik-meta-jwks
|
||||
- X-authentik-meta-outpost
|
||||
- X-authentik-meta-provider
|
||||
- X-authentik-meta-app
|
||||
- X-authentik-meta-version
|
||||
Reference in New Issue
Block a user