Replies: 2 comments 18 replies
-
It's possible to hook up proxies like oauth2-proxy to do just that. It is sparsely documented over here in the Zitadel docs. It works though! |
Beta Was this translation helpful? Give feedback.
-
@kekalainen would you be able to share how you setup your application within Zitadel to work with this setup? I have managed to get Zitadel working work with OAuth2 Proxy and NGINX-Proxy-Manager, but can't seem to figure out how to have Zitadel authorize access to the original URL I am trying to protect. To clarify, I've attached an image of the general flow being used and below is what is happening/my issue:
Expected result after successful login: What is happening: I believe my problem is simply I haven't correctly told Zitadel that the user I am logging in as is allowed to access app.domain.com . However, I can't seem to figure out how to do this. I'm hoping I can use this setup to set Zitadel as a front for any of the apps I am self-hosting (AdGuardHome, FileBrowser, etc.). Integrating Zitadel's userbase with the logins of the apps themselves is a later project/task. |
Beta Was this translation helpful? Give feedback.
-
Maybe it's already supported, but if not: I think it should be possible to use Zitadel for forward auth authentication, for example with Traefik, nginx or Caddy.
Beta Was this translation helpful? Give feedback.
All reactions