ok

2024-04-19 10:27:36 +02:00
parent fcb6bbe566
commit 35c96e715c
7852 changed files with 4815 additions and 8 deletions
--- a/Authentication/Authelia/docker-compose-traefik.yml
+++ b/Authentication/Authelia/docker-compose-traefik.yml
@ -0,0 +1,64 @@
+#### NETWORKS
+networks:
+  docker-traefik_front_network:
+    external: true
+  back_network:
+    driver: bridge
+    attachable: true
+    
+#### SERVICES
+services:
+
+### Authelia
+  authelia:
+    container_name: authelia-app
+    hostname: authelia-app
+    image: authelia/authelia
+    volumes:
+      - ./config:/config
+    networks:
+      - back_network
+      - docker-traefik_front_network
+    security_opt:
+      - no-new-privileges:true
+    labels:
+      - "traefik.enable=true"
+      - "traefik.docker.network=docker-traefik_front_network"
+# HTTP
+      - "traefik.http.routers.authelia-http.rule=Host(`auth.10.0.4.29.traefik.me`)"
+      - "traefik.http.routers.authelia-http.entrypoints=http"
+# HTTPS
+      - "traefik.http.routers.authelia-https.rule=Host(`auth.10.0.4.29.traefik.me`)"
+      - "traefik.http.routers.authelia-https.entrypoints=https"
+      - "traefik.http.routers.authelia-https.tls=true"
+      - "traefik.http.routers.authelia.service=authelia-service"
+      - "traefik.http.routers.authelia-https.middlewares=authelia-addprefix"
+# Middleware
+      - "traefik.http.middlewares.guacamole-addprefix.addprefix.prefix=/guacamole"
+      - 'traefik.http.middlewares.authelia.forwardAuth.address=http://authelia:9091/api/verify?rd=https://auth.jimsgarage.co.uk'
+      - 'traefik.http.middlewares.authelia.forwardAuth.trustForwardHeader=true'
+      - 'traefik.http.middlewares.authelia.forwardAuth.authResponseHeaders=Remote-User,Remote-Groups,Remote-Name,Remote-Email'
+      - 'traefik.http.middlewares.authelia-basic.forwardAuth.address=http://authelia:9091/api/verify?auth=basic'
+      - 'traefik.http.middlewares.authelia-basic.forwardAuth.trustForwardHeader=true'
+      - 'traefik.http.middlewares.authelia-basic.forwardAuth.authResponseHeaders=Remote-User,Remote-Groups,Remote-Name,Remote-Email'
+# Service
+      - "traefik.http.services.authelia-service.loadbalancer.server.port=9091"
+    restart: unless-stopped
+    environment:
+      - TZ=Europe/Paris
+    healthcheck:
+      disable: true
+
+  redis:
+    container_name: authelia-redis
+    hostname: authelia-redis
+    image: redis:alpine
+    volumes:
+      - ./redis:/data
+    networks:
+      - back_network
+    expose:
+      - 6379
+    restart: unless-stopped
+    environment:
+      - TZ=Europe/Paris