From bd8a43cca12ce691d94afed3f7ce34fd2cf087a7 Mon Sep 17 00:00:00 2001
From: akanealw <akanealw@gmail.com>
Date: Thu, 27 Mar 2025 18:49:01 -0500
Subject: [PATCH] renamed authentik and replaced with authelia snippet

---
 authelia/config/configuration.yml |  5 +++++
 reverseproxy/caddy/Caddyfile      | 10 +++++++++-
 2 files changed, 14 insertions(+), 1 deletion(-)

diff --git a/authelia/config/configuration.yml b/authelia/config/configuration.yml
index 8fbd658..8c26464 100644
--- a/authelia/config/configuration.yml
+++ b/authelia/config/configuration.yml
@@ -7,6 +7,10 @@ theme: dark
 
 server:
   address: 'tcp://:9091'
+  endpoints:
+    authz:
+      forward-auth:
+        implementation: 'ForwardAuth'
 
 log:
   level: 'debug'
@@ -86,6 +90,7 @@ session:
     - name: 'authelia_session'
       domain: 'akanealw.com'
       authelia_url: 'https://auth.akanealw.com'
+      default_redirection_url: 'https://akanealw.com'
       expiration: '1 hour'
       inactivity: '5 minutes'
 
diff --git a/reverseproxy/caddy/Caddyfile b/reverseproxy/caddy/Caddyfile
index 8bdd9d1..206e84e 100644
--- a/reverseproxy/caddy/Caddyfile
+++ b/reverseproxy/caddy/Caddyfile
@@ -28,7 +28,7 @@
 # auth snippet for authentik
 # --------------------------------------------------
 
-(auth) {
+(authentik) {
         reverse_proxy /outpost.goauthentik.io/* authentik-server:9000
 
         forward_auth authentik-server:9000 {
@@ -38,6 +38,14 @@
         }
 }
 
+(auth) {
+        forward_auth authelia:9091 {
+                uri /api/authz/forward-auth
+                copy_headers Remote-User Remote-Groups Remote-Email Remote-Name
+                trusted_proxies private_ranges
+        }
+}
+
 # --------------------------------------------------
 # akanealw.com root domain
 # --------------------------------------------------