|
|
@@ -1,5 +1,9 @@
|
|
|
version: '3'
|
|
|
|
|
|
+networks:
|
|
|
+ frontend:
|
|
|
+ external: true
|
|
|
+
|
|
|
services:
|
|
|
authelia:
|
|
|
image: authelia/authelia
|
|
|
@@ -8,15 +12,15 @@ services:
|
|
|
- /etc/authelia:/config
|
|
|
labels:
|
|
|
- 'traefik.enable=true'
|
|
|
- - 'traefik.http.routers.authelia.rule=Host(`authelia.example.com`)'
|
|
|
- - 'traefik.http.routers.authelia.entrypoints=https'
|
|
|
+ - 'traefik.http.routers.authelia.rule=Host(`your-domain.com`)'
|
|
|
+ - 'traefik.http.routers.authelia.entrypoints=websecure'
|
|
|
- 'traefik.http.routers.authelia.tls=true'
|
|
|
- # - 'traefik.http.routers.authelia.tls.certresolver=letsencrypt'
|
|
|
- - 'traefik.http.middlewares.authelia.forwardauth.address=http://authelia:9091/api/verify?rd=https://authelia.example.com' # yamllint disable-line rule:line-length
|
|
|
+ - 'traefik.http.middlewares.authelia.forwardauth.address=http://authelia:9091/api/verify?rd=https://your-domain.com' # yamllint disable-line rule:line-length
|
|
|
- 'traefik.http.middlewares.authelia.forwardauth.trustForwardHeader=true'
|
|
|
- - 'traefik.http.middlewares.authelia.forwardauth.authResponseHeaders=Remote-User,Remote-Groups,Remote-Name,Remote-Email' # yamllint disable-line rule:line-length
|
|
|
+ - 'traefik.http.middlewares.authelia.forwardauth.authResponseHeaders=Remote-User,Remote-Groups,Remote-Name,Remote-Email' # yamllint disable-line rule:line-length
|
|
|
expose:
|
|
|
- 9091
|
|
|
restart: unless-stopped
|
|
|
healthcheck:
|
|
|
- disable: true
|
|
|
+ disable: true
|
|
|
+
|
xcad2k