authentik/website/docs/providers/proxy/_caddy_standalone.md

Use the following configuration:

```
app.company {
    # always forward outpost path to actual outpost
    reverse_proxy /outpost.goauthentik.io/* http://outpost.company:9000

    # forward authentication to outpost
    forward_auth http://outpost.company:9000 {
        uri /outpost.goauthentik.io/auth/caddy

        # capitalization of the headers is important, otherwise they will be empty
        copy_headers X-Authentik-Username X-Authentik-Groups X-Authentik-Email X-Authentik-Name X-Authentik-Uid X-Authentik-Jwt X-Authentik-Meta-Jwks X-Authentik-Meta-Outpost X-Authentik-Meta-Provider X-Authentik-Meta-App X-Authentik-Meta-Version

        # optional, in this config trust all private ranges, should probably be set to the outposts IP
        trusted_proxies private_ranges
    }

    # actual site configuration below, for example
    reverse_proxy localhost:1234
}
```
providers/proxy: add caddy endpoint (#3330) Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2022-07-29 08:58:53 +00:00			`Use the following configuration:`

			```
			`app.company {`
			`# always forward outpost path to actual outpost`
			`reverse_proxy /outpost.goauthentik.io/* http://outpost.company:9000`

			`# forward authentication to outpost`
			`forward_auth http://outpost.company:9000 {`
			`uri /outpost.goauthentik.io/auth/caddy`

			`# capitalization of the headers is important, otherwise they will be empty`
			`copy_headers X-Authentik-Username X-Authentik-Groups X-Authentik-Email X-Authentik-Name X-Authentik-Uid X-Authentik-Jwt X-Authentik-Meta-Jwks X-Authentik-Meta-Outpost X-Authentik-Meta-Provider X-Authentik-Meta-App X-Authentik-Meta-Version`

			`# optional, in this config trust all private ranges, should probably be set to the outposts IP`
			`trusted_proxies private_ranges`
			`}`

			`# actual site configuration below, for example`
			`reverse_proxy localhost:1234`
			`}`
			```