all repos — nixfiles @ 8940ca006ef2ab98862060a9b0c71f8a0d6d4919

System and user configuration, managed by nix and home-manager

linde: restrict access to paperless by tailnet

Alan Pearce
commit

8940ca006ef2ab98862060a9b0c71f8a0d6d4919

parent

6bb58bbb6db5914b6177041714e625a0fe9ae5b1

1 file changed, 1 insertion(+), 0 deletions(-)

jump to
M system/linde.nixsystem/linde.nix
@@ -880,6 +880,7 @@ file_server
                 }
                 forward_auth unix//run/tailscale-nginx-auth/tailscale-nginx-auth.sock {
                   uri /auth
+                  header_up Expected-Tailnet "${ts-domain}."
                   header_up Remote-Addr {remote_host}
                   header_up Remote-Port {remote_port}
                   header_up Original-URI {uri}