-
Notifications
You must be signed in to change notification settings - Fork 11
/
traefik-auth.yml
34 lines (33 loc) · 984 Bytes
/
traefik-auth.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
---
version: "3.7"
services:
traefik-forward-auth:
# image: thomseddon/traefik-forward-auth
image: funkypenguin/traefik-forward-auth
container_name: traefik-forward-auth
networks:
traefik:
aliases:
- traefik-forward-auth
environment:
PUID: 1000
PGID: 1000
CLIENT_ID: ${AUTHCLIENTID}
CLIENT_SECRET: ${AUTHCLIENTSECRET}
OIDC_ISSUER: https://keycloak.${DOMAINNAME}/auth/realms/master
SECRET: "THISISASECRET"
AUTH_HOST: auth.${DOMAINNAME}
COOKIE_DOMAINS: ${DOMAINNAME}
# WHITELIST: ${EMAIL}
COOKIE_SECURE: "true"
LIFETIME: "2592000"
labels:
traefik.enable: "true"
traefik.port: 4181
traefik.frontend.rule: Host:auth.${DOMAINNAME}
traefik.frontend.auth.forward.address: http://traefik-forward-auth:4181
traefik.frontend.auth.forward.trustForwardHeader: "true"
traefik.backend: traefik-forward-auth
networks:
traefik:
name: traefik