add authentik middleware

2026-02-28 17:56:12 -06:00
parent fa6abcfd98
commit 8697469f5f
2 changed files with 22 additions and 0 deletions
--- a/system/virtualization/docker/authentik/default.nix
+++ b/system/virtualization/docker/authentik/default.nix
@@ -95,6 +95,12 @@ in {
                "traefik.http.routers.${name}.tls.certResolver" = "cloudflare";
                
                "traefik.http.services.${name}.loadbalancer.server.url" = "http://192.168.101.1:${builtins.toString hostPort}";
+                
+
+                "traefik.http.middlewares.authentik.forwardauth.address" = "https://auth.esotericbytes.com/outpost.goauthentik.io/auth/traefik";
+                "traefik.http.middlewares.authentik.forwardauth.trustForwardHeader" = "true";
+                "traefik.http.middlewares.authentik.forwardauth.authResponseHeaders" = "X-authentik-username,X-authentik-groups,X-authentik-entitlements,X-authentik-email,X-authentik-name,X-authentik-uid,X-authentik-jwt,X-authentik-meta-jwks,X-authentik-meta-outpost,X-authentik-meta-provider,X-authentik-meta-app,X-authentik-meta-version";
+
            };
            volumes = [
                "/etc/Authentik/custom-templates:/templates:rw"