42 lines
1.8 KiB
Python
42 lines
1.8 KiB
Python
"""Proxy Provider Docker Controller"""
|
|
from urllib.parse import urlparse
|
|
|
|
from authentik.outposts.controllers.base import DeploymentPort
|
|
from authentik.outposts.controllers.docker import DockerController
|
|
from authentik.outposts.models import DockerServiceConnection, Outpost
|
|
from authentik.providers.proxy.models import ProxyProvider
|
|
|
|
|
|
class ProxyDockerController(DockerController):
|
|
"""Proxy Provider Docker Controller"""
|
|
|
|
def __init__(self, outpost: Outpost, connection: DockerServiceConnection):
|
|
super().__init__(outpost, connection)
|
|
self.deployment_ports = [
|
|
DeploymentPort(9000, "http", "tcp"),
|
|
DeploymentPort(9443, "https", "tcp"),
|
|
]
|
|
|
|
def _get_labels(self) -> dict[str, str]:
|
|
hosts = []
|
|
for proxy_provider in ProxyProvider.objects.filter(outpost__in=[self.outpost]):
|
|
proxy_provider: ProxyProvider
|
|
external_host_name = urlparse(proxy_provider.external_host)
|
|
hosts.append(f"`{external_host_name.netloc}`")
|
|
traefik_name = self.name
|
|
labels = super()._get_labels()
|
|
labels["traefik.enable"] = "true"
|
|
labels[
|
|
f"traefik.http.routers.{traefik_name}-router.rule"
|
|
] = f"Host({','.join(hosts)}) && PathPrefix(`/outpost.goauthentik.io`)"
|
|
labels[f"traefik.http.routers.{traefik_name}-router.tls"] = "true"
|
|
labels[f"traefik.http.routers.{traefik_name}-router.service"] = f"{traefik_name}-service"
|
|
labels[
|
|
f"traefik.http.services.{traefik_name}-service.loadbalancer.healthcheck.path"
|
|
] = "/outpost.goauthentik.io/ping"
|
|
labels[
|
|
f"traefik.http.services.{traefik_name}-service.loadbalancer.healthcheck.port"
|
|
] = "9300"
|
|
labels[f"traefik.http.services.{traefik_name}-service.loadbalancer.server.port"] = "9000"
|
|
return labels
|