Open ServerNinja opened 1 day ago
Update:
Added ingress annotations to help address the following error:
upstream sent too big header while reading response header from upstream
Annotations:
nginx.ingress.kubernetes.io/proxy-buffers-number: "8"
nginx.ingress.kubernetes.io/proxy-buffering: "on"
nginx.ingress.kubernetes.io/proxy-buffer-size: "32k"
Now I'm getting lots of these errors:
E1015 13:54:52.885570 7 tcp.go:129] Error copying data: readfrom tcp 127.0.0.1:40012->127.0.0.1:442: use of closed network connection
This seems to be doing a lot of 302 redirects, looping between autorize/ and start/. Is this a config issue with the ingress for alertmanager and the outpost?
Describe your question/ I'm trying to configure an authentik outpost for a single simple http app (no built in auth) that needs to use the single application forward auth provider on a k8s cluster using the ingress-nginx controller. This is actually the "alertmanager" and "prometheus" console apps, which have no built-in authentication mechanisms.
I've been struggling with setting this up for days. Right now, I do get a gateway 502 error when the application redirects to the outpost. When I curl the /outpost.goauthentik.io/ping url on the app, it gives me the http 204 that is expected in the troubleshooting section in the docs for this.
Version and Deployment:
Relevant Info
Outposts console (The outpost in question is the one named: "alertmanager"):
Outpost Configuration:
Alertmanager Provier and Application:
Ingress for Alertmanager
Ingress for the Alertmanager Outpost:
**Screenshot and Trace Logs when trying to access https://alertmanager.xxxxxxxxxx.com:"
The Trace Log: authentik_log.txt