diff options
author | Toby Vincent <Tobyv13@gmail.com> | 2021-07-01 10:48:27 -0500 |
---|---|---|
committer | Toby Vincent <Tobyv13@gmail.com> | 2021-07-01 10:48:27 -0500 |
commit | 61180287160e028a38c9aeadb913a04a5fcd1f93 (patch) | |
tree | f1ecc5d932de064b8dd349b99e7beefb3b44c204 | |
parent | a04ea4a816818c77d38325e983683b84b94781d4 (diff) |
moved oauth subdomain to auth
-rwxr-xr-x | docker-compose.yml | 34 |
1 files changed, 17 insertions, 17 deletions
diff --git a/docker-compose.yml b/docker-compose.yml index 9c231c5..8dadc14 100755 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -40,20 +40,20 @@ services: - 443:443 restart: unless-stopped depends_on: - - oauth + - auth labels: ## traefik WebUI - traefik.enable=true - traefik.http.routers.api.service=api@internal # - traefik.http.routers.api.entrypoints=websecure - oauth: + auth: image: thomseddon/traefik-forward-auth:2.2.0-arm - container_name: oauth + container_name: auth command: - --log-level=warn - --log-format=text - - --auth-host=oauth.$DOMAIN + - --auth-host=auth.$DOMAIN - --cookie-domain=$DOMAIN - --default-action=auth - --default-provider=google @@ -69,26 +69,26 @@ services: - --rule.personal.action=allow - --rule.personal.rule=Host(`heimdall.$DOMAIN`) secrets: - - source: secrets_oauth - target: /secrets_oauth + - source: auth + target: /auth environment: - - CONFIG=/secrets_oauth + - CONFIG=/auth expose: - 4181 restart: unless-stopped labels: - traefik.enable=true - - traefik.http.routers.oauth.entrypoints=websecure - - traefik.http.services.oauth.loadbalancer.server.port=4181 + - traefik.http.routers.auth.entrypoints=websecure + - traefik.http.services.auth.loadbalancer.server.port=4181 ## middlewares - - traefik.http.routers.oauth.middlewares=secured@docker - - traefik.http.middlewares.secured.chain.middlewares=oauth + - traefik.http.routers.auth.middlewares=secured@docker + - traefik.http.middlewares.secured.chain.middlewares=auth - traefik.http.middlewares.rate-limit.rateLimit.average=100 - traefik.http.middlewares.rate-limit.rateLimit.burst=50 - - traefik.http.middlewares.oauth.forwardauth.address=http://oauth:4181 - - traefik.http.middlewares.oauth.forwardauth.trustForwardHeader=true - - traefik.http.middlewares.oauth.forwardauth.authResponseHeaders=X-Forwarded-User - # Logout: https://oauth.tobyvin.com/_oauth/logout + - traefik.http.middlewares.auth.forwardauth.address=http://auth:4181 + - traefik.http.middlewares.auth.forwardauth.trustForwardHeader=true + - traefik.http.middlewares.auth.forwardauth.authResponseHeaders=X-Forwarded-User + # Logout: https://auth.tobyvin.com/_oauth/logout whoami: image: traefik/whoami @@ -98,8 +98,8 @@ services: - traefik.http.routers.whoami.entrypoints=websecure secrets: - secrets_oauth: - file: secrets/oauth + auth: + file: secrets/auth volumes: nfs: |