From 6f56a61a649fe7e5f1ab95fe299c784180135c87 Mon Sep 17 00:00:00 2001 From: Jens Langhammer Date: Sat, 21 May 2022 13:06:54 +0200 Subject: [PATCH] website/docs: add docs for advanced SSH config Signed-off-by: Jens Langhammer #2916 --- internal/outpost/proxyv2/handlers.go | 2 +- website/docs/outposts/integrations/docker.md | 6 ++++++ 2 files changed, 7 insertions(+), 1 deletion(-) diff --git a/internal/outpost/proxyv2/handlers.go b/internal/outpost/proxyv2/handlers.go index 8b6a21931..1508d3369 100644 --- a/internal/outpost/proxyv2/handlers.go +++ b/internal/outpost/proxyv2/handlers.go @@ -50,7 +50,7 @@ func (ps *ProxyServer) lookupApp(r *http.Request) (*application.Application, str // Try to find application by directly looking up host first (proxy, forward_auth_single) a, ok := ps.apps[host] if ok { - ps.log.WithField("host", host).WithField("app", a.ProxyConfig().Name).Debug("Found app based direct host match") + ps.log.WithField("host", host).WithField("app", a.ProxyConfig().Name).Trace("Found app based direct host match") return a, host } // For forward_auth_domain, we don't have a direct app to domain relationship diff --git a/website/docs/outposts/integrations/docker.md b/website/docs/outposts/integrations/docker.md index 2badbec2b..4fe87984e 100644 --- a/website/docs/outposts/integrations/docker.md +++ b/website/docs/outposts/integrations/docker.md @@ -72,3 +72,9 @@ You'll end up with three files: Modify/create a new Docker integration, and set your _Docker URL_ to `ssh://hostname`, and select the keypair you created above as _TLS Authentication Certificate/SSH Keypair_. The _Docker URL_ field include a user, if none is specified authentik connects with the user `authentik`. + +#### Advanced SSH config + +With the above configuration, authentik will create and manage an `~/.ssh/config` file. If you need advanced configuration, for example SSH Certificates, you can mount a custom SSH Config file. + +Mount the config file into `/authentik/.ssh/config`, and mount any other relevant files into a directory under `/opt`. Afterwards, create an integration using `ssh://hostname`, and don't select a keypair.