I am in self hosting for a bit now, have an unraid server and a bunch of services running. Now I want to expose some services through a reverse proxy, but with authentication, preferably google oauth2. I’ve tried a lot of things, Authentik, Authelia, NPM, and so on. I found everything way to complicated. What I liked the most until now is Caddy with the greenpau/caddy-security module. Very easy config through the caddyfile… Though the module has to be manually installed after every update of the caddy docker container, thats kind of a turn of for me, since everything else on my server is almost maintainance-free.

You have any suggestions?

… also this is my first post on lemmy, since I migrated from reddit. ;)

  • DudeWithaTwist@lemmy.world
    link
    fedilink
    English
    arrow-up
    5
    ·
    1 year ago

    I’ve always used Nginx for my reverse proxy and their basic_auth directive for password protection. For a homelab setup, I’m not sure why you’d need anything heavier.

    • momsi@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      Well yeah, basic auth is surely the easiest method … though I rather like to go the oauth2/OIDC route.

      • DudeWithaTwist@lemmy.world
        link
        fedilink
        English
        arrow-up
        3
        ·
        1 year ago

        Just wondering why, because you need some justification to take the harder route. Oath2 is enterprise level, developed by Meta, Google, and others to be top-notch. basic_auth works to dissuade intruders.

        Unless you have a stalker trying to infiltrate your network, I can only imagine this will cause more headaches than it’s worth.