From 807136e35ae3ab2606cc47d997fef96c2040962a Mon Sep 17 00:00:00 2001
From: DeveloperDurp <DeveloperDurp@durp.info>
Date: Thu, 17 Nov 2022 16:01:44 -0600
Subject: [PATCH] auth

---
 uptimekuma/templates/ingress.yaml | 38 +++++++++++++++++++------------
 1 file changed, 23 insertions(+), 15 deletions(-)

diff --git a/uptimekuma/templates/ingress.yaml b/uptimekuma/templates/ingress.yaml
index 4cc908a..daf909d 100644
--- a/uptimekuma/templates/ingress.yaml
+++ b/uptimekuma/templates/ingress.yaml
@@ -4,22 +4,30 @@ metadata:
   annotations:
     kubernetes.io/ingress.class: nginx
     cert-manager.io/cluster-issuer: letsencrypt-production
-    nginx.ingress.kubernetes.io/proxy-read-timeout: "3600"
-    nginx.ingress.kubernetes.io/proxy-send-timeout: "3600"
-    nginx.ingress.kubernetes.io/server-snippets: |
-      location / {
-        proxy_set_header Upgrade $http_upgrade;
-        proxy_http_version 1.1;
+    #nginx.ingress.kubernetes.io/proxy-read-timeout: "3600"
+    #nginx.ingress.kubernetes.io/proxy-send-timeout: "3600"
+    nginx.ingress.kubernetes.io/auth-url: |-
+        http://ak-outpost-authentik-embedded-outpost.authentik.svc.cluster.local:9000/outpost.goauthentik.io/auth/nginx
+    nginx.ingress.kubernetes.io/auth-signin: |-
+        https://whoogle.durp.info/outpost.goauthentik.io/start?rd=$escaped_request_uri
+    nginx.ingress.kubernetes.io/auth-response-headers: |-
+        Set-Cookie,X-authentik-username,X-authentik-groups,X-authentik-email,X-authentik-name,X-authentik-uid
+    nginx.ingress.kubernetes.io/auth-snippet: |
         proxy_set_header X-Forwarded-Host $http_host;
-        proxy_set_header X-Forwarded-Proto $scheme;
-        proxy_set_header X-Forwarded-For $remote_addr;
-        proxy_set_header Host $host;
-        proxy_set_header Connection "upgrade";
-        proxy_set_header X-Real-IP $remote_addr;
-        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-        proxy_set_header   Upgrade $http_upgrade;
-        proxy_cache_bypass $http_upgrade;
-        }
+   # nginx.ingress.kubernetes.io/server-snippets: |
+   #   location / {
+   #     proxy_set_header Upgrade $http_upgrade;
+   #     proxy_http_version 1.1;
+   #     proxy_set_header X-Forwarded-Host $http_host;
+   #     proxy_set_header X-Forwarded-Proto $scheme;
+   #     proxy_set_header X-Forwarded-For $remote_addr;
+   #     proxy_set_header Host $host;
+   #     proxy_set_header Connection "upgrade";
+   #     proxy_set_header X-Real-IP $remote_addr;
+   #     proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+   #     proxy_set_header   Upgrade $http_upgrade;
+   #     proxy_cache_bypass $http_upgrade;
+   #     }
   name: ingress
 spec:
   tls: