Taddeusz Posted June 2, 2022 Share Posted June 2, 2022 I've got Authentik set up and accessible through my domain. I'm currently using linuxserver's Swag Docker with Vouch and Keycloak for authentication/authorization. I'm not seeing any guides on how to integrate Authentik with Swag. It appears as if Authentik should replace both Vouch and Keycloak so I'm trying to figure out how to implement it through Swag. Maybe I need to read the docs. I set up a proxy provider and an application and outpost. I took the nginx standalone code and put the "/" location code into a file to include in the application's location and put the other server block code into a separate file to include outside the app's location blocks. When I browse to my application I just get a 500 error. Any ideas? Quote Link to comment
Casadream_1 Posted July 7, 2022 Share Posted July 7, 2022 (edited) I think Hibracorp wanted to break things down into stages. This is the install only which includes Postgres/Redis/Authentik. It's already a good thing and it takes place without complications. I think the next step will be on a concrete use case with an application for example not secure ? In this regard, if someone can answer this question : with Authelia we have strong Authentication. But once the authentication passed, we have the Login / Password authentication of the app. How to remove the authentication of an application so as not to duplicate ? Thanks Edited July 7, 2022 by Casadream_1 1 Quote Link to comment
linusgrip Posted September 16, 2022 Share Posted September 16, 2022 Great video but cant get the authentik-worker to connect to postgres. Followed the guide exactly. Gets this error in worker log: {"event": "PostgreSQL connection successful", "level": "info", "logger": "__main__", "timestamp": 1663354077.5986426} {"event": "PostgreSQL connection failed, retrying... (connection to server at \"postgres\" (172.18.0.12), port 5432 failed: FATAL: password authentication failed for user \"postgres\"\n)", "level": "info", "logger": "__main__", "timestamp": 1663354078.6033316} Anyone got an idea? Removed every special character everywhere. Thanks! Quote Link to comment
007craft Posted October 10, 2022 Share Posted October 10, 2022 On 6/2/2022 at 2:59 PM, Taddeusz said: I've got Authentik set up and accessible through my domain. I'm currently using linuxserver's Swag Docker with Vouch and Keycloak for authentication/authorization. I'm not seeing any guides on how to integrate Authentik with Swag. It appears as if Authentik should replace both Vouch and Keycloak so I'm trying to figure out how to implement it through Swag. Maybe I need to read the docs. I set up a proxy provider and an application and outpost. I took the nginx standalone code and put the "/" location code into a file to include in the application's location and put the other server block code into a separate file to include outside the app's location blocks. When I browse to my application I just get a 500 error. Any ideas? Same problem here. Switched to nginx proxy manager and still get the 500 error. followed all online sources troubleshooting, error remains. Quote Link to comment
hot22shot Posted November 18, 2022 Share Posted November 18, 2022 I succefully installed Authentik thanks to this video, but after that there's a steep learning curve about terminology and concepts. To be honest I'm strill trying to figure out what is an outpost, and should I care about it. Here's a link I followed to mimic what Authelia does for a simple SSO with NPM : https://geekscircuit.com/set-up-authentik-sso-with-nginx-proxy-manager/ I also had a 500 error fixed by adjusting the proxy_pass in NPM configuration, as explained in the link : Quote Make sure you have changed the authentik proxy pass config. either you can use internal IP address with port number or public address proxy_pass https://auth.example.com/outpost.goauthentik.io; proxy_pass http://10.10.20.25:9090/outpost.goauthentik.io; I will definitely continue to dig on how use this tool as the possibilities are larger comparing to Authelia. 1 Quote Link to comment
ppunraid Posted March 30, 2023 Share Posted March 30, 2023 Has anyone gotten this to work properly? I got the redirect working, but it automatically denies me access and doesn't go to the login screen. Even going directly to authentic produces the same problem until I turn off the workflows within authentic or remove the configs from the targeted app. The only way I really got it to work briefly is when all the apps are in the same proxy network, but that isn't really feasible as some apps need to be on it's own IP Quote Link to comment
PlanetDyna Posted August 15, 2023 Share Posted August 15, 2023 I have installed authentik with unraid. Do I still need to set up port 389 in Docker settings? At least this is required when setting up with ldap jellyfin: https://www.reddit.com/r/selfhosted/comments/x3b74z/authentik_ldap_with_jellyfin_setup/ Quote Link to comment
chenci Posted December 21, 2023 Share Posted December 21, 2023 (edited) I followed IBRACORP tutorial and had authentik + postgres installed in unraid. I use SWAG + Cloudflare as well as reverse proxy and have the annoying "500 Internal Server Error" when I connect to one of my subdomains (which is a VM service exposed to port 80). The service works fine when I use the actual LAN IP. In Authentik log I have this error log (I x'd and y'd the IPs and the domain). Any idea? Outpost authentik Embedded Outpost (Provider NGINX) failed to detect a forward URL from nginx { "url": "https:///outpost.goauthentik.io/auth/nginx", "headers": { "Accept": "image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8", "Cf-Ray": "838cea73496dc339-EWR", "Referer": "https://my.domain.com/", "Cdn-Loop": "cloudflare", "Priority": "u=1, i", "Sec-Ch-Ua": "\"Not_A Brand\";v=\"8\", \"Chromium\";v=\"120\", \"Google Chrome\";v=\"120\"", "X-Real-Ip": "xxx.xxx.xxx.xxx", "Cf-Visitor": "{\"scheme\":\"https\"}", "Connection": "close", "User-Agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36", "Cf-Ipcountry": "US", "Sec-Fetch-Dest": "image", "Sec-Fetch-Mode": "no-cors", "Sec-Fetch-Site": "same-origin", "Accept-Language": "en-US,en;q=0.9,es-AR;q=0.8,es;q=0.7", "X-Forwarded-For": "xxx.xxx.xxx.xxx, yyy.yyy.yyy.yyy", "X-Forwarded-Ssl": "on", "Cf-Connecting-Ip": "xxx.xxx.xxx.xxx", "Sec-Ch-Ua-Mobile": "?0", "X-Forwarded-Host": "my.domain.com", "X-Forwarded-Proto": "https", "Sec-Ch-Ua-Platform": "\"Windows\"" }, "message": "Outpost authentik Embedded Outpost (Provider NGINX) failed to detect a forward URL from nginx", "outpost": "authentik Embedded Outpost", "provider": "NGINX" } User {} Edited December 21, 2023 by chenci Quote Link to comment
hot22shot Posted August 9 Share Posted August 9 It took me a while but I got a working installation now. I followed the docker-compose installation method : https://docs.goauthentik.io/docs/installation/docker-compose I though it would be best as the images versions were selected by the Authentik team. And after some tryouts I successfully configured Authentik to work with NPM : - SSO with Radarr/Sonarr - Login page for service that does not support authentication. I'm still working on OAuth SSO for Guacamole. 1 Quote Link to comment
Espressomatic Posted September 6 Share Posted September 6 I've yet to have any of Ibracorp's dockers and video instructions "just work" - why should this be any different. 👌 Quote Link to comment
Sycotix Posted September 7 Author Share Posted September 7 4 hours ago, Espressomatic said: I've yet to have any of Ibracorp's dockers and video instructions "just work" - why should this be any different. 👌 Feel free to update them if you like. We volunteer our time so if you can do it better please get to it. Quote Link to comment
UnknownWitcher Posted September 21 Share Posted September 21 On 9/7/2024 at 12:12 AM, Espressomatic said: I've yet to have any of Ibracorp's dockers and video instructions "just work" - why should this be any different. 👌 Fun fact, applications tend to receive updates, which eventually results in a once-useful instructional video becoming obsolete, even their Unraid setup video isn't as useful as it once was after the 6.12 update which changed how storage is assigned to shares. This very fact is the reason I stumbled upon this post, in the hopes of finding others who may have got Authentik up and running. Quote Link to comment
Espressomatic Posted September 21 Share Posted September 21 1 hour ago, UnknownWitcher said: Fun fact, applications tend to receive updates, which eventually results in a once-useful instructional video becoming obsolete I typically watch out for things like that, which wasn't what I was referring to. Funnily enough, the Authentik video instructions do in fact work (so kudos), and I didn't notice any glaring omissions. It leaves you with a functioning Authentik installation which you can successfully log into when finished. My previous post was more along the lines of steps completely missed or dependencies and other requirements not disclosed, both in video and written instructions. Again, not relating to changes in the software in question - those issues are easy to ignore for the most part. Quote Link to comment
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.