public_git
/
wireguard-ui
mirror of https://github.com/ngoduykhanh/wireguard-ui.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Merge pull request #2 from ezdan/oauth2 

Oauth2 Proxy
This commit is contained in:
dan 2021-08-28 09:37:55 -06:00 committed by GitHub
parent a0fa6c7c23 44eac82ef6
commit e822df4a35
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 48 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

47
docker-compose-oauth2.yaml Normal file
View File

@ -0,0 +1,47 @@
version: '3.9'
services:
wgui:
container_name: wgui
image: wireguard-ui:latest
read_only: true
environment:
- DISABLE_LOGIN=true
logging:
driver: json-file
options:
max-size: 50m
volumes:
- ./db:/app/db
- ./wireguard:/etc/wireguard
oauth2-proxy:
container_name: wg-oauth2-proxy
image: quay.io/oauth2-proxy/oauth2-proxy:latest
read_only: true
command:
--provider="oidc"
--client-id="$CLIENT_ID"
--client-secret="$CLIENT_SECRET"
--login-url=https://$AUTH_SERVER/auth/realms/$REALM/protocol/openid-connect/auth
--redeem-url=https://$AUTH_SERVER/auth/realms/$REALM/protocol/openid-connect/token
--profile-url=https://$AUTH_SERVER/auth/realms/$REALM/protocol/openid-connect/userinfo
--validate-url=https://$AUTH_SERVER/auth/realms/$REALM/protocol/openid-connect/userinfo
--oidc-jwks-url=https://$AUTH_SERVER/auth/realms/$REALM/protocol/openid-connect/certs
--oidc-issuer-url=https://$AUTH_SERVER/auth/realms/$REALM
--http-address=0.0.0.0:5000
--cookie-secret="$COOKIE_SECRET"
--cookie-secure="false"
--email-domain=*
--upstream=http://wgui:5000/
--redirect-url=http://localhost:5000/oauth2/callback
--reverse-proxy="false"
--scope="openid email profile"
--pass-user-headers="true"
--pass-access-token="true"
--pass-authorization-header="true"
--set-authorization-header="true"
--set-xauthrequest="true"
hostname: oauth2-proxy
ports:
- 5000:5000/tcp

1
main.go
View File

@ -43,6 +43,7 @@ const (
func init() { func init() {
// command-line flags and env variables // command-line flags and env variables
flag.BoolVar(&flagDisableLogin, "disable-login", util.LookupEnvOrBool("DISABLE_LOGIN", flagDisableLogin), "Disable login page. Turn off authentication.")
flag.StringVar(&flagBindAddress, "bind-address", util.LookupEnvOrString("BIND_ADDRESS", flagBindAddress), "Address:Port to which the app will be bound.") flag.StringVar(&flagBindAddress, "bind-address", util.LookupEnvOrString("BIND_ADDRESS", flagBindAddress), "Address:Port to which the app will be bound.")
flag.StringVar(&flagSendgridApiKey, "sendgrid-api-key", util.LookupEnvOrString("SENDGRID_API_KEY", flagSendgridApiKey), "Your sendgrid api key.") flag.StringVar(&flagSendgridApiKey, "sendgrid-api-key", util.LookupEnvOrString("SENDGRID_API_KEY", flagSendgridApiKey), "Your sendgrid api key.")
flag.StringVar(&flagEmailFrom, "email-from", util.LookupEnvOrString("EMAIL_FROM_ADDRESS", flagEmailFrom), "'From' email address.") flag.StringVar(&flagEmailFrom, "email-from", util.LookupEnvOrString("EMAIL_FROM_ADDRESS", flagEmailFrom), "'From' email address.")