habsi/authentik
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

outposts/proxy: add X-Forwarded-Host since Host now gets changed by the proxy

Browse Source 
closes #2284

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
This commit is contained in:
Jens Langhammer
2022-02-10 23:09:55 +01:00
parent cc42830e23
commit 1f838bb2aa
4 changed files with 10 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
website/docs/providers/proxy/proxy.md
View File

@ -46,6 +46,12 @@ Besides these user-specific headers, some application specific headers are also
The authentik outpost's version.
### Only in proxy mode
- X-Forwarded-Host:
The original Host header sent by the client. This is set as the `Host` header is set to the host of the configured backend.
## HTTPS
The outpost listens on both 9000 for HTTP and 9443 for HTTPS.

2
website/docs/releases/v2022.1.md
View File

@ -23,6 +23,8 @@ This release mostly removes legacy fields and features that have been deprecated
- X-Forwarded-Preferred-Username, use `X-authentik-username`
- X-Forwarded-User, use `X-authentik-uid`
The proxy now also sets the host header based on what is configured as upstream in the proxy provider. The original Host is forwarded as `X-Forwarded-Host`.
Additionally, the header requirements for nginx have changed. Either a `X-Original-URL` or `X-Original-URI` header are now required. See the [*Proxy provider*](../providers/proxy/forward_auth) documentation for updated snippets.
- API: