Comment on How to enhance Caddy's basic_auth?
notquitenothing@sh.itjust.works 1 week agoI don’t think you could do that directly in the Caddyfile, but you can create those groups/policies inside VoidAuth and assign them to users there.
The steps would be to create the ProxyAuth Domain (protected.example.com/*) in VoidAuth with the allowed group(s), make sure the user(s) have that group, then in Caddy add the forward_auth directive to the same route you want to protect.
Then when you go to access that route in a browser it will redirect you to VoidAuth login, or if you pass an Authentication header with Basic Auth (like when using an API) it will use that.