all repos — nixfiles @ 8940ca006ef2ab98862060a9b0c71f8a0d6d4919

System and user configuration, managed by nix and home-manager

linde: restrict access to paperless by tailnet
Alan Pearce alan@alanpearce.eu
Tue, 03 Dec 2024 14:50:54 +0100
commit

8940ca006ef2ab98862060a9b0c71f8a0d6d4919

parent

6bb58bbb6db5914b6177041714e625a0fe9ae5b1

1 files changed, 1 insertions(+), 0 deletions(-)

jump to
M system/linde.nixsystem/linde.nix
@@ -880,6 +880,7 @@ file_server                 }
                 forward_auth unix//run/tailscale-nginx-auth/tailscale-nginx-auth.sock {
                   uri /auth
+                  header_up Expected-Tailnet "${ts-domain}."
                   header_up Remote-Addr {remote_host}
                   header_up Remote-Port {remote_port}
                   header_up Original-URI {uri}