thomas/docker-server
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Configuration cleanup

Browse Source
This commit is contained in:
Thomas Lovén
2020-01-27 12:45:53 +01:00
parent 834f7d0f2b
commit 1e275fea5b
6 changed files with 110 additions and 137 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
README.md Normal file
View File

@@ -0,0 +1,17 @@
# Server
Configuration for traefik 2 and authelia
### Authelia preprocessor
The authelia configuration contains some sensitive values, but authelia cannot read them from env variables like traefic can.
Instead, a special service - `authelia-config` runs before authelia start, and preprocesses the configuration file.
- Local file `./authelia/configuration.yaml` is mapped to `/data/input` in `authelia-config`
- Volume `authelia-config` is mapped to `/data/output` in `authelia-config`
- `authelia-config` runs `gomplate` on `/data/input` and saves to `data/output/configuration.yaml`
- Volume `authelia-config` is mapped to `/etc/authelia` in `authelia`, where it reads its configuration
## Lessons learned
- Authelia will ONLY work with https. Both the authelia url itself and the one being authenticated must be https.