Comment on How to enhance Caddy's basic_auth?
notquitenothing@sh.itjust.works 4 weeks ago
Developer of VoidAuth here, you could give that a try! If you have any issues or questions I can help :) VoidAuth
Comment on How to enhance Caddy's basic_auth?
notquitenothing@sh.itjust.works 4 weeks ago
Developer of VoidAuth here, you could give that a try! If you have any issues or questions I can help :) VoidAuth
tubbadu@lemmy.kde.social 4 weeks ago
This looks very interesting! I see that it supports users groups, would it be possible to create “named access policies” (like “admin_only_policy”, “group_XXX_policy” ecc) and then assign them to the various services directly in the Caddyfile? thank you very much!
notquitenothing@sh.itjust.works 4 weeks ago
I don’t think you could do that directly in the Caddyfile, but you can create those groups/policies inside VoidAuth and assign them to users there.
The steps would be to create the ProxyAuth Domain (protected.example.com/*) in VoidAuth with the allowed group(s), make sure the user(s) have that group, then in Caddy add the forward_auth directive to the same route you want to protect.
Then when you go to access that route in a browser it will redirect you to VoidAuth login, or if you pass an Authentication header with Basic Auth (like when using an API) it will use that.