138 lines
3.5 KiB
Plaintext
138 lines
3.5 KiB
Plaintext
# dynamic configuration
|
|
http:
|
|
middlewares:
|
|
middlewares-authentik:
|
|
forwardAuth:
|
|
address: http://ubuntu:9000/outpost.goauthentik.io/auth/traefik
|
|
trustForwardHeader: true
|
|
authResponseHeaders:
|
|
- X-authentik-username
|
|
- X-authentik-groups
|
|
- X-authentik-entitlements
|
|
- X-authentik-email
|
|
- X-authentik-name
|
|
- X-authentik-uid
|
|
- X-authentik-jwt
|
|
- X-authentik-meta-jwks
|
|
- X-authentik-meta-outpost
|
|
- X-authentik-meta-provider
|
|
- X-authentik-meta-app
|
|
- X-authentik-meta-version
|
|
routers:
|
|
hass-router:
|
|
entryPoints:
|
|
- "hass"
|
|
rule: "Host(`home.thoster.net`) && PathPrefix(`/`)"
|
|
service: hass-service
|
|
tls:
|
|
certResolver: letsencrypt
|
|
paperless-router:
|
|
entryPoints:
|
|
- "websecure"
|
|
rule: "Host(`pl.home.thoster.net`) && PathPrefix(`/`)"
|
|
middlewares:
|
|
- "middlewares-authentik"
|
|
priority: 15
|
|
service: paperless-service
|
|
tls:
|
|
certResolver: letsencrypt
|
|
paperless-router-auth:
|
|
entryPoints:
|
|
- "websecure"
|
|
rule: "Host(`pl.home.thoster.net`) && PathPrefix(`/outpost.goauthentik.io/`)"
|
|
priority: 15
|
|
service: authentik
|
|
tls:
|
|
certResolver: letsencrypt
|
|
default-router:
|
|
entryPoints:
|
|
- "websecure"
|
|
rule: "Host(`home.thoster.net`) && PathPrefix(`/`)"
|
|
middlewares:
|
|
- middlewares-authentik
|
|
service: wikimd-service
|
|
tls:
|
|
certResolver: letsencrypt
|
|
default-router-auth:
|
|
entryPoints:
|
|
- "websecure"
|
|
rule: "Host(`home.thoster.net`) && PathPrefix(`/outpost.goauthentik.io/`)"
|
|
priority: 15
|
|
service: authentik
|
|
tls:
|
|
certResolver: letsencrypt
|
|
photos-router:
|
|
entryPoints:
|
|
- "websecure"
|
|
rule: "Host(`photo.home.thoster.net`) && PathPrefix(`/`)"
|
|
service: photos-service
|
|
tls:
|
|
certResolver: letsencrypt
|
|
auth-router:
|
|
entryPoints:
|
|
- "websecure"
|
|
rule: "Host(`auth.home.thoster.net`) && PathPrefix(`/`)"
|
|
service: auth-service
|
|
tls:
|
|
certResolver: letsencrypt
|
|
hass2-router:
|
|
entryPoints:
|
|
- "websecure"
|
|
rule: "Host(`hass.home.thoster.net`) && PathPrefix(`/`)"
|
|
service: hass-service
|
|
tls:
|
|
certResolver: letsencrypt
|
|
nas-router:
|
|
entryPoints:
|
|
- "websecure"
|
|
rule: "Host(`nas.home.thoster.net`) && PathPrefix(`/`)"
|
|
service: nas-service
|
|
tls:
|
|
certResolver: letsencrypt
|
|
ai-router:
|
|
entryPoints:
|
|
- "websecure"
|
|
rule: "Host(`ai.home.thoster.net`) && PathPrefix(`/`)"
|
|
service: ai-service
|
|
tls:
|
|
certResolver: letsencrypt
|
|
|
|
services:
|
|
hass-service:
|
|
loadBalancer:
|
|
servers:
|
|
- url: "http://ubuntu:8123"
|
|
photos-service:
|
|
loadBalancer:
|
|
servers:
|
|
- url: "http://ubuntu:2283"
|
|
nas-service:
|
|
loadBalancer:
|
|
servers:
|
|
- url: "http://nas"
|
|
ai-service:
|
|
loadBalancer:
|
|
servers:
|
|
- url: "http://mini:8080"
|
|
wikimd-service:
|
|
loadBalancer:
|
|
servers:
|
|
- url: "http://ubuntu:5200"
|
|
auth-service:
|
|
loadBalancer:
|
|
servers:
|
|
- url: "http://ubuntu:9000"
|
|
paperless-service:
|
|
loadBalancer:
|
|
servers:
|
|
- url: "http://ubuntu:8000"
|
|
dummy-service:
|
|
loadBalancer:
|
|
servers:
|
|
- url: "http://whoami"
|
|
authentik:
|
|
loadBalancer:
|
|
servers:
|
|
- url: "http://ubuntu:9000/outpost.goauthentik.io"
|
|
|