From 488c614ae722ed3816381b0253c280e2d0a63ec2 Mon Sep 17 00:00:00 2001 From: Teck Meng Date: Sat, 21 Sep 2024 19:04:23 +0800 Subject: [PATCH] Refactor Traefik router middleware for opnsense service in swarm/services.yml --- swarm/traefik/local_services.yml | 38 ++++++++++++++++++++++---------- 1 file changed, 26 insertions(+), 12 deletions(-) diff --git a/swarm/traefik/local_services.yml b/swarm/traefik/local_services.yml index 774826a..7ede02c 100644 --- a/swarm/traefik/local_services.yml +++ b/swarm/traefik/local_services.yml @@ -9,18 +9,18 @@ http: address: "http://authentik-server:9000/outpost.goauthentik.io/auth/traefik" trustForwardHeader: true authResponseHeaders: - - X-authentik-username - - X-authentik-groups - - X-authentik-email - - X-authentik-name - - X-authentik-uid - - X-authentik-jwt - - X-authentik-meta-jwks - - X-authentik-meta-outpost - - X-authentik-meta-provider - - X-authentik-meta-app - - X-authentik-meta-version - - authorization + - X-authentik-username + - X-authentik-groups + - X-authentik-email + - X-authentik-name + - X-authentik-uid + - X-authentik-jwt + - X-authentik-meta-jwks + - X-authentik-meta-outpost + - X-authentik-meta-provider + - X-authentik-meta-app + - X-authentik-meta-version + - authorization routers: local-traefik-public-https: @@ -74,6 +74,15 @@ http: tls: {} service: proxmox01@file + opnsense: + entryPoints: + - https + rule: Host(`opn.furyhawk.lol`) + middlewares: + - admin-auth@swarm + tls: {} + service: opnsense@file + services: coco_desktop: loadBalancer: @@ -94,6 +103,11 @@ http: servers: - url: "https://192.168.50.201:8006" + opnsense: + loadBalancer: + servers: + - url: "http://192.168.50.170" + tcp: routers: spice00: