From b8b33c280f4c07f8f345a40e6c5ad5e559a978a4 Mon Sep 17 00:00:00 2001 From: "Lockszmith (runtipi@kateryna)" Date: Wed, 4 Dec 2024 21:03:12 -0500 Subject: [PATCH] switch forwardAuth response headers matching to RegEx --- _traefik.dynamic/dynamic/dynamic.yml | 1 + _traefik.dynamic/dynamic/fwd-auth-sysmgr.yml | 25 ++++++++++---------- 2 files changed, 14 insertions(+), 12 deletions(-) diff --git a/_traefik.dynamic/dynamic/dynamic.yml b/_traefik.dynamic/dynamic/dynamic.yml index 1d02dc6..18769aa 100644 --- a/_traefik.dynamic/dynamic/dynamic.yml +++ b/_traefik.dynamic/dynamic/dynamic.yml @@ -2,6 +2,7 @@ http: serversTransports: insecuretransport: insecureSkipVerify: true + middlewares: secureHeaders: headers: diff --git a/_traefik.dynamic/dynamic/fwd-auth-sysmgr.yml b/_traefik.dynamic/dynamic/fwd-auth-sysmgr.yml index 3e91092..9c7dbfb 100644 --- a/_traefik.dynamic/dynamic/fwd-auth-sysmgr.yml +++ b/_traefik.dynamic/dynamic/fwd-auth-sysmgr.yml @@ -4,15 +4,16 @@ http: forwardAuth: address: https://auth.szk.li/outpost.goauthentik.io/auth/traefik trustForwardHeader: true - authResponseHeaders: - - X-authentik-username - - X-authentik-groups - - X-authentik-email - - X-authentik-name - - X-authentik-uid - - X-authentik-jwt - - X-authentik-meta-jwks - - X-authentik-meta-outpost - - X-authentik-meta-provider - - X-authentik-meta-app - - X-authentik-meta-version \ No newline at end of file + authResponseHeadersRegex: "^[Xx]-[Aa]uthentik" + # authResponseHeaders: + # - X-authentik-username + # - X-authentik-groups + # - X-authentik-email + # - X-authentik-name + # - X-authentik-uid + # - X-authentik-jwt + # - X-authentik-meta-jwks + # - X-authentik-meta-outpost + # - X-authentik-meta-provider + # - X-authentik-meta-app + # - X-authentik-meta-version \ No newline at end of file