can someone please share an example cofiguration with authentik + traefik doing forward auth (single application mode in authentik) on an application hosted on a subpath e.g. foo.example.com/myApp?
i'm trying to host multiple apps on one domain (/myApp, /myOtherApp, and so on).
here is my broken config. that's cool if you're able to see the problem with mine, but an example config of something else would probably also be OK.
note that i am not using TLS anywhere backend. TLS only happens later at cloudflare's edge.
my authentik server is available in docker backend as http://authentik:9000 or frontend as https://auth.example.com)
in traefik, i have this middleware defined in a file:
can someone please share an example cofiguration with authentik + traefik doing forward auth (single application mode in authentik) on an application hosted on a subpath e.g.
foo.example.com/myApp
?i'm trying to host multiple apps on one domain (
/myApp
,/myOtherApp
, and so on).here is my broken config. that's cool if you're able to see the problem with mine, but an example config of something else would probably also be OK.
note that i am not using TLS anywhere backend. TLS only happens later at cloudflare's edge.
my authentik server is available in docker backend as
http://authentik:9000
or frontend ashttps://auth.example.com
)in traefik, i have this middleware defined in a file:
on authentik server's container, i have these labels set in docker compose:
^ that last routing rule has three parts OR'd together:
auth.example.com
)traefik.example.com
) && PathPrefix(/outpost.goauthentik.io/
)foo.example.com
) && PathPrefix(/whoami-subpath/outpost.goauthentik.io/
)demo service available internally at
http://whoami-subpath
and externally athttps://foo.example.com/whoami-subpath
(docker compose):in authentik's dash, i have the demo service configured like this:
when i visit
https://foo.example.com/whoami-subpath
, authentik gives me this error:when i try this with curl (
curl -Lv https://foo.example.com/whoami-subpath
):so it looks like
redirect_uri
=https://foo.example.com/whoami-subpath/outpost.goauthentik.io/callback?X-authentik-auth-callback=true
thanks