website/docs: remove old banner, fix nginx formatting
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
This commit is contained in:
parent
2b9915ea7c
commit
c157030905
|
@ -68,11 +68,7 @@ volumeMounts:
|
||||||
</Tabs>
|
</Tabs>
|
||||||
|
|
||||||
:::info
|
:::info
|
||||||
This is currently only supported for docker-compose installs, and supported starting version 0.15.
|
If you've add the line and created a file, and can't see if, check the worker logs using `docker-compose logs -f worker` or `kubectl logs -f deployment/authentik-worker`.
|
||||||
:::
|
|
||||||
|
|
||||||
:::info
|
|
||||||
If you've add the line and created a file, and can't see if, check the logs using `docker-compose logs -f worker`.
|
|
||||||
:::
|
:::
|
||||||
|
|
||||||
![](custom_template.png)
|
![](custom_template.png)
|
||||||
|
|
|
@ -13,16 +13,17 @@ port_in_redirect off;
|
||||||
location / {
|
location / {
|
||||||
# Put your proxy_pass to your application here
|
# Put your proxy_pass to your application here
|
||||||
proxy_pass $forward_scheme://$server:$port;
|
proxy_pass $forward_scheme://$server:$port;
|
||||||
|
# Set any other headers your application might need
|
||||||
|
# proxy_set_header Host $host;
|
||||||
|
# proxy_set_header ...
|
||||||
|
|
||||||
|
##############################
|
||||||
# authentik-specific config
|
# authentik-specific config
|
||||||
auth_request /outpost.goauthentik.io/auth/nginx;
|
##############################
|
||||||
error_page 401 = @goauthentik_proxy_signin;
|
auth_request /outpost.goauthentik.io/auth/nginx;
|
||||||
|
error_page 401 = @goauthentik_proxy_signin;
|
||||||
auth_request_set $auth_cookie $upstream_http_set_cookie;
|
auth_request_set $auth_cookie $upstream_http_set_cookie;
|
||||||
add_header Set-Cookie $auth_cookie;
|
add_header Set-Cookie $auth_cookie;
|
||||||
|
|
||||||
# pass original hostname and url to Nginx Proxy Manager, it might be needed for some apps to work
|
|
||||||
# proxy_set_header Host $host;
|
|
||||||
# proxy_set_header X-Original-URL $scheme://$http_host$request_uri;
|
|
||||||
|
|
||||||
# translate headers from the outposts back to the actual upstream
|
# translate headers from the outposts back to the actual upstream
|
||||||
auth_request_set $authentik_username $upstream_http_x_authentik_username;
|
auth_request_set $authentik_username $upstream_http_x_authentik_username;
|
||||||
|
@ -40,17 +41,15 @@ location / {
|
||||||
|
|
||||||
# all requests to /outpost.goauthentik.io must be accessible without authentication
|
# all requests to /outpost.goauthentik.io must be accessible without authentication
|
||||||
location /outpost.goauthentik.io {
|
location /outpost.goauthentik.io {
|
||||||
proxy_pass http://outpost.company:9000/outpost.goauthentik.io;
|
proxy_pass http://outpost.company:9000/outpost.goauthentik.io;
|
||||||
# ensure the host of this vserver matches your external URL you've configured
|
# ensure the host of this vserver matches your external URL you've configured
|
||||||
# in authentik
|
# in authentik
|
||||||
proxy_set_header Host $host;
|
proxy_set_header Host $host;
|
||||||
proxy_set_header X-Original-URL $scheme://$http_host$request_uri;
|
proxy_set_header X-Original-URL $scheme://$http_host$request_uri;
|
||||||
add_header Set-Cookie $auth_cookie;
|
add_header Set-Cookie $auth_cookie;
|
||||||
auth_request_set $auth_cookie $upstream_http_set_cookie;
|
auth_request_set $auth_cookie $upstream_http_set_cookie;
|
||||||
|
|
||||||
# required for POST requests to work
|
|
||||||
proxy_pass_request_body off;
|
proxy_pass_request_body off;
|
||||||
proxy_set_header Content-Length "";
|
proxy_set_header Content-Length "";
|
||||||
}
|
}
|
||||||
|
|
||||||
# Special location for when the /auth endpoint returns a 401,
|
# Special location for when the /auth endpoint returns a 401,
|
||||||
|
|
|
@ -14,18 +14,18 @@ server {
|
||||||
proxy_buffer_size 32k;
|
proxy_buffer_size 32k;
|
||||||
|
|
||||||
location / {
|
location / {
|
||||||
# Put your proxy_pass to your application here
|
# Put your proxy_pass to your application here, and all the other statements you'll need
|
||||||
# proxy_pass http://localhost:5000;
|
# proxy_pass http://localhost:5000;
|
||||||
|
# proxy_set_header Host $host;
|
||||||
|
# proxy_set_header ...
|
||||||
|
|
||||||
|
##############################
|
||||||
# authentik-specific config
|
# authentik-specific config
|
||||||
auth_request /outpost.goauthentik.io/auth/nginx;
|
##############################
|
||||||
error_page 401 = @goauthentik_proxy_signin;
|
auth_request /outpost.goauthentik.io/auth/nginx;
|
||||||
|
error_page 401 = @goauthentik_proxy_signin;
|
||||||
auth_request_set $auth_cookie $upstream_http_set_cookie;
|
auth_request_set $auth_cookie $upstream_http_set_cookie;
|
||||||
add_header Set-Cookie $auth_cookie;
|
add_header Set-Cookie $auth_cookie;
|
||||||
|
|
||||||
# pass original hostname and url to Nginx, it might be needed for some apps to work
|
|
||||||
# proxy_set_header Host $host;
|
|
||||||
# proxy_set_header X-Original-URL $scheme://$http_host$request_uri;
|
|
||||||
|
|
||||||
# translate headers from the outposts back to the actual upstream
|
# translate headers from the outposts back to the actual upstream
|
||||||
auth_request_set $authentik_username $upstream_http_x_authentik_username;
|
auth_request_set $authentik_username $upstream_http_x_authentik_username;
|
||||||
|
@ -43,17 +43,15 @@ server {
|
||||||
|
|
||||||
# all requests to /outpost.goauthentik.io must be accessible without authentication
|
# all requests to /outpost.goauthentik.io must be accessible without authentication
|
||||||
location /outpost.goauthentik.io {
|
location /outpost.goauthentik.io {
|
||||||
proxy_pass http://outpost.company:9000/outpost.goauthentik.io;
|
proxy_pass http://outpost.company:9000/outpost.goauthentik.io;
|
||||||
# ensure the host of this vserver matches your external URL you've configured
|
# ensure the host of this vserver matches your external URL you've configured
|
||||||
# in authentik
|
# in authentik
|
||||||
proxy_set_header Host $host;
|
proxy_set_header Host $host;
|
||||||
proxy_set_header X-Original-URL $scheme://$http_host$request_uri;
|
proxy_set_header X-Original-URL $scheme://$http_host$request_uri;
|
||||||
add_header Set-Cookie $auth_cookie;
|
add_header Set-Cookie $auth_cookie;
|
||||||
auth_request_set $auth_cookie $upstream_http_set_cookie;
|
auth_request_set $auth_cookie $upstream_http_set_cookie;
|
||||||
|
|
||||||
# required for POST requests to work
|
|
||||||
proxy_pass_request_body off;
|
proxy_pass_request_body off;
|
||||||
proxy_set_header Content-Length "";
|
proxy_set_header Content-Length "";
|
||||||
}
|
}
|
||||||
|
|
||||||
# Special location for when the /auth endpoint returns a 401,
|
# Special location for when the /auth endpoint returns a 401,
|
||||||
|
|
Reference in a new issue