This commit is contained in:
Murphy 2024-05-27 12:01:12 -04:00
parent 928267287d
commit dd57d6537c
Signed by: freya
GPG key ID: 744AB800E383AE52
3 changed files with 36 additions and 4 deletions

34
README.md Normal file
View file

@ -0,0 +1,34 @@
## ldap_forwardauth
LDAP Forward Auth is a forward auth service (shocking) that i made to use with the caddy reverse proxy.
It allows a proxied login page to appear if a user tries to access restricted content while not logged in.
It uses LDAP for authentication, which can be configured in the conf/ldap/ldap.env file.
```
# the following is all the ldap credentials for a ldap bind dn auth setup
# this does not support ldap simple auth
LDAP_URL=
LDAP_BIND_DN=
LDAP_BIND_PASSWORD=
LDAP_BASE_DN=
LDAP_FILTER="(&)"
LDAP_UID="cn"
# the host that the forward auth is hosted at
# if the user is not logged in they will be redirected here
HTTP_HOST=auth.example.com
# the base domain for all websites that are being authed checked including the forward auth itself.
# they all need to have a common root domain otherwise the X-LDAP-Auth-Key cookie cannot be set.
COOKIE_DOMAIN=example.com
```
Once authenticated, sets the X-Webauth-User header, which can be used by applications to see who is logged in.
### how to run
'''
docker compose up -d
'''

Binary file not shown.

Before

Width:  |  Height:  |  Size: 415 KiB

After

Width:  |  Height:  |  Size: 367 KiB

View file

@ -16,10 +16,8 @@ html, body {
body {
display: flex;
justify-content: center;
background: #898989;
background-image: url('./bg.jpg');
background-size: 100%;
background-position: 50% 50%;
background: url('./bg.jpg')
50% 50%/cover no-repeat fixed;
color: #fff;
font-family: "Open Sans", Helvetica, Arial, sans-serif;
font-weight: 100;