mirror of https://github.com/authelia/authelia.git
70 lines
1.2 KiB
Caddyfile
70 lines
1.2 KiB
Caddyfile
(tls-transport) {
|
|
transport http {
|
|
tls
|
|
tls_insecure_skip_verify
|
|
}
|
|
}
|
|
|
|
:8085 {
|
|
log
|
|
reverse_proxy authelia-backend:9091 {
|
|
header_up X-Forwarded-Proto https
|
|
import tls-transport
|
|
}
|
|
}
|
|
|
|
login.example.com:8080 {
|
|
tls /pki/public.crt /pki/private.pem
|
|
log
|
|
route {
|
|
reverse_proxy /.well-known/* authelia-backend:9091 {
|
|
import tls-transport
|
|
}
|
|
|
|
reverse_proxy /api/* authelia-backend:9091 {
|
|
import tls-transport
|
|
}
|
|
|
|
reverse_proxy /locales/* authelia-backend:9091 {
|
|
import tls-transport
|
|
}
|
|
|
|
reverse_proxy /devworkflow authelia-backend:9091 {
|
|
import tls-transport
|
|
}
|
|
|
|
reverse_proxy /jwks.json authelia-backend:9091 {
|
|
import tls-transport
|
|
}
|
|
|
|
reverse_proxy authelia-frontend:3000 :8085 {
|
|
lb_policy first
|
|
lb_try_duration 5s
|
|
lb_try_interval 250ms
|
|
|
|
fail_duration 10s
|
|
max_fails 1
|
|
unhealthy_status 5xx
|
|
}
|
|
}
|
|
}
|
|
|
|
mail.example.com:8080 {
|
|
tls /pki/public.crt /pki/private.pem
|
|
log
|
|
reverse_proxy smtp:8025
|
|
}
|
|
|
|
*.example.com:8080 {
|
|
tls /pki/public.crt /pki/private.pem
|
|
log
|
|
forward_auth authelia-backend:9091 {
|
|
uri /api/authz/caddy
|
|
copy_headers Remote-User Remote-Groups Remote-Name Remote-Email
|
|
import tls-transport
|
|
}
|
|
|
|
reverse_proxy /headers httpbin:8000
|
|
reverse_proxy nginx-backend
|
|
}
|