# dynamic configuration http: middlewares: middlewares-authentik: forwardAuth: address: http://ubuntu:9000/outpost.goauthentik.io/auth/traefik trustForwardHeader: true authResponseHeaders: - X-authentik-username - X-authentik-groups - X-authentik-entitlements - X-authentik-email - X-authentik-name - X-authentik-uid - X-authentik-jwt - X-authentik-meta-jwks - X-authentik-meta-outpost - X-authentik-meta-provider - X-authentik-meta-app - X-authentik-meta-version routers: paperless-router: entryPoints: - "websecure" rule: "Host(`pl.home.thoster.net`) && PathPrefix(`/`)" middlewares: - "middlewares-authentik" priority: 15 service: paperless-service tls: certResolver: letsencrypt jellyfin-router: entryPoints: - "websecure" rule: "Host(`media.home.thoster.net`) && PathPrefix(`/`)" service: jellyfin-service tls: certResolver: letsencrypt paperless-router-auth: entryPoints: - "websecure" rule: "Host(`pl.home.thoster.net`) && PathPrefix(`/outpost.goauthentik.io/`)" priority: 15 service: authentik tls: certResolver: letsencrypt default-router: entryPoints: - "websecure" rule: "Host(`home.thoster.net`) && PathPrefix(`/`)" middlewares: - middlewares-authentik service: wikimd-service tls: certResolver: letsencrypt default-router-auth: entryPoints: - "websecure" rule: "Host(`home.thoster.net`) && PathPrefix(`/outpost.goauthentik.io/`)" priority: 15 service: authentik tls: certResolver: letsencrypt comfy-router: entryPoints: - "websecure" rule: "Host(`comfy.home.thoster.net`) && PathPrefix(`/`)" middlewares: - middlewares-authentik service: comfy-service tls: certResolver: letsencrypt comfy-router-auth: entryPoints: - "websecure" rule: "Host(`comfy.home.thoster.net`) && PathPrefix(`/outpost.goauthentik.io/`)" priority: 15 service: authentik tls: certResolver: letsencrypt photos-router: entryPoints: - "websecure" rule: "Host(`photo.home.thoster.net`) && PathPrefix(`/`)" service: photos-service tls: certResolver: letsencrypt auth-router: entryPoints: - "websecure" rule: "Host(`auth.home.thoster.net`) && PathPrefix(`/`)" service: auth-service tls: certResolver: letsencrypt hass-router-secure: entryPoints: - "websecure" rule: "Host(`hass.home.thoster.net`) && PathPrefix(`/auth/`)" priority: 14 middlewares: - middlewares-authentik service: hass-service tls: certResolver: letsencrypt hass-router: entryPoints: - "websecure" rule: "Host(`hass.home.thoster.net`) && PathPrefix(`/`)" priority: 10 middlewares: - middlewares-authentik service: hass-service tls: certResolver: letsencrypt hass-router-auth: entryPoints: - "websecure" rule: "Host(`hass.home.thoster.net`) && PathPrefix(`/outpost.goauthentik.io/`)" priority: 15 service: authentik tls: certResolver: letsencrypt nas-router: entryPoints: - "websecure" rule: "Host(`nas.home.thoster.net`) && PathPrefix(`/`)" service: nas-service tls: certResolver: letsencrypt ai-router: entryPoints: - "websecure" rule: "Host(`ai.home.thoster.net`) && PathPrefix(`/`)" service: ai-service tls: certResolver: letsencrypt services: hass-service: loadBalancer: servers: - url: "http://192.168.178.114:8123" photos-service: loadBalancer: servers: - url: "http://ubuntu:2283" nas-service: loadBalancer: servers: - url: "http://nas" ai-service: loadBalancer: servers: - url: "http://ubuntu:8082" wikimd-service: loadBalancer: servers: - url: "http://ubuntu:5200" comfy-service: loadBalancer: servers: - url: "http://192.168.178.87:8188" auth-service: loadBalancer: servers: - url: "http://ubuntu:9000" paperless-service: loadBalancer: servers: - url: "http://ubuntu:8000" jellyfin-service: loadBalancer: servers: - url: "http://ubuntu:8096" dummy-service: loadBalancer: servers: - url: "http://whoami" authentik: loadBalancer: servers: - url: "http://ubuntu:9000/outpost.goauthentik.io"