test authentik

2022-11-12 07:30:19 -06:00
parent 3dba24c093
commit 51f9e408a0
1 changed files with 4 additions and 4 deletions
--- a/longhorn-system/templates/ingress.yaml
+++ b/longhorn-system/templates/ingress.yaml
@@ -5,10 +5,10 @@ metadata:
  annotations:
    kubernetes.io/ingress.class: nginx
    cert-manager.io/cluster-issuer: letsencrypt-production 
-    #nginx.ingress.kubernetes.io/auth-response-headers: Authorization
-    #nginx.ingress.kubernetes.io/auth-response-headers: "x-auth-request-user, x-auth-request-email, x-auth-request-access-token"
-    #nginx.ingress.kubernetes.io/auth-url: https://oauth.durp.info/oauth2/auth
-    #nginx.ingress.kubernetes.io/auth-signin: https://oauth.durp.info/oauth2/start?rd=https://$host$request_uri$is_args$args
+    nginx.ingress.kubernetes.io/auth-url: http://ak-outpost-example.authentik.svc.cluster.local:9000/outpost.goauthentik.io/auth/nginx
+    nginx.ingress.kubernetes.io/auth-signin: https://longhorn.internal.durp.info//outpost.goauthentik.io/start?rd=$escaped_request_uri
+    nginx.ingress.kubernetes.io/auth-response-headers: Set-Cookie,X-authentik-username,X-authentik-groups,X-authentik-email,X-authentik-name,X-authentik-uid
+    nginx.ingress.kubernetes.io/auth-snippet: proxy_set_header X-Forwarded-Host $http_host;
    nginx.ingress.kubernetes.io/whitelist-source-range: "192.168.0.0/16"
 spec:
  rules: