Skip to content

Trying to get trusted header auth to work #644

Answered by Atlasfreak
Atlasfreak asked this question in Q&A
Discussion options

You must be logged in to vote

Finally got it to work.
I set the network_mode variable to bridge so that the wakapi container would be attached to the default docker network.
Then I could set the WAKAPI_TRUST_REVERSE_PROXY_IPS to 172.17.0.1. Additionally I needed to set OIDCAuthNHeader Remote-User in the apache config.
Also you can change the value mod_auth_openidc passes to wakapi with OIDCRemoteUserClaim. I set this to sub and adjusted the wakapi username to fit the username in authentik.
Thanks again for the help @muety rbaskets did really help.
Apparently Apache never sent any Remote-User Header at all not even REMOTE_USER

Replies: 2 comments 3 replies

Comment options

You must be logged in to vote
2 replies
@Atlasfreak
Comment options

@Atlasfreak
Comment options

Answer selected by Atlasfreak
Comment options

You must be logged in to vote
1 reply
@muety
Comment options

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Category
Q&A
Labels
None yet
3 participants