Rauthy is a simple web service that requires a user to first authenticate using a query token, a header token or a basic auth username and password. After they have authenticated their IP is stored and that IP will no longer require any authentication.
Ensure your nginx configuration supports subrequest authentication
Download the latest release from Github
Set your .env
There are multiple ways to authenticate against Rauthy
curl https://raw.githubusercontent.com/Krakaw/rauthy/master/.env.sample -o .env
# Add a username and password
rauthy user -u username -p password
# Add an optional command to be run on successful auth
rauthy cmd -u username -c 'echo "my command"'
# Start the server
./rauthyConfigure nginx
location /private {
auth_request /auth;
#...
}
location = /auth {
internal;
proxy_pass http://127.0.0.1:3031$request_uri;
proxy_pass_request_body off;
proxy_set_header Content-Length "";
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_pass_request_headers on;
}docker build -t rauthy:latest .
docker-compose upgit clone https://github.com/Krakaw/rauthy.git
cd rauthy
cp .env.sample .env
cargo run