website/docs: add docs for advanced SSH config
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> #2916
This commit is contained in:
parent
2dee8034d3
commit
6f56a61a64
|
@ -50,7 +50,7 @@ func (ps *ProxyServer) lookupApp(r *http.Request) (*application.Application, str
|
||||||
// Try to find application by directly looking up host first (proxy, forward_auth_single)
|
// Try to find application by directly looking up host first (proxy, forward_auth_single)
|
||||||
a, ok := ps.apps[host]
|
a, ok := ps.apps[host]
|
||||||
if ok {
|
if ok {
|
||||||
ps.log.WithField("host", host).WithField("app", a.ProxyConfig().Name).Debug("Found app based direct host match")
|
ps.log.WithField("host", host).WithField("app", a.ProxyConfig().Name).Trace("Found app based direct host match")
|
||||||
return a, host
|
return a, host
|
||||||
}
|
}
|
||||||
// For forward_auth_domain, we don't have a direct app to domain relationship
|
// For forward_auth_domain, we don't have a direct app to domain relationship
|
||||||
|
|
|
@ -72,3 +72,9 @@ You'll end up with three files:
|
||||||
Modify/create a new Docker integration, and set your _Docker URL_ to `ssh://hostname`, and select the keypair you created above as _TLS Authentication Certificate/SSH Keypair_.
|
Modify/create a new Docker integration, and set your _Docker URL_ to `ssh://hostname`, and select the keypair you created above as _TLS Authentication Certificate/SSH Keypair_.
|
||||||
|
|
||||||
The _Docker URL_ field include a user, if none is specified authentik connects with the user `authentik`.
|
The _Docker URL_ field include a user, if none is specified authentik connects with the user `authentik`.
|
||||||
|
|
||||||
|
#### Advanced SSH config
|
||||||
|
|
||||||
|
With the above configuration, authentik will create and manage an `~/.ssh/config` file. If you need advanced configuration, for example SSH Certificates, you can mount a custom SSH Config file.
|
||||||
|
|
||||||
|
Mount the config file into `/authentik/.ssh/config`, and mount any other relevant files into a directory under `/opt`. Afterwards, create an integration using `ssh://hostname`, and don't select a keypair.
|
||||||
|
|
Reference in a new issue