Bot Updating Package Versions

Merge pull request #570 from jlssmt/add-tinyauth
2026-03-10 04:05:16 +09:00 · 2025-06-16 17:39:01 +00:00 · 2025-06-16 18:34:21 +01:00 · 2025-06-14 03:47:18 +00:00 · 2025-06-08 17:47:30 +02:00
5 changed files with 55 additions and 2 deletions
--- a/.gitignore
+++ b/.gitignore
@@ -1 +1,2 @@
+.idea
 .jenkins-external
--- a/package_versions.txt
+++ b/package_versions.txt
@@ -78,7 +78,7 @@ certbot-dns-standalone          1.2.1             python
 certbot-dns-transip             0.5.2             python                   
 certbot-dns-vultr               1.1.0             python                   
 certbot-plugin-gandi            1.5.0             python                   
-certifi                         2025.4.26         python                   
+certifi                         2025.6.15         python                   
 cffi                            1.17.1            python                   
 charset-normalizer              3.4.2             python                   
 cli                             UNKNOWN           binary                   
@@ -120,7 +120,7 @@ gnupg-keyboxd                   2.4.7-r0          apk
 gnupg-utils                     2.4.7-r0          apk                      
 gnupg-wks-client                2.4.7-r0          apk                      
 gnutls                          3.8.8-r0          apk                      
-google-api-core                 2.25.0            python                   
+google-api-core                 2.25.1            python                   
 google-api-python-client        2.172.0           python                   
 google-auth                     2.40.3            python                   
 google-auth-httplib2            0.2.0             python                   
--- a/root/defaults/nginx/tinyauth-location.conf.sample
+++ b/root/defaults/nginx/tinyauth-location.conf.sample
@@ -0,0 +1,9 @@
+## Version 2025/06/08 - Changelog: https://github.com/linuxserver/docker-swag/commits/master/root/defaults/nginx/tinyauth-location.conf.sample
+# Make sure that your tinyauth container is in the same user defined bridge network and is named tinyauth
+# Rename /config/nginx/proxy-confs/tinyauth.subdomain.conf.sample to /config/nginx/proxy-confs/tinyauth.subdomain.conf
+
+## Send a subrequest to tinyauth to verify if the user is authenticated and has permission to access the resource
+auth_request /tinyauth;
+
+## If the subreqest returns 200 pass to the backend, if the subrequest returns 401 redirect to the portal
+error_page 401 = @tinyauth_login;
--- a/root/defaults/nginx/tinyauth-server.conf.sample
+++ b/root/defaults/nginx/tinyauth-server.conf.sample
@@ -0,0 +1,35 @@
+## Version 2025/06/08 - Changelog: https://github.com/linuxserver/docker-swag/commits/master/root/defaults/nginx/tinyauth-server.conf.sample
+# Make sure that your tinyauth container is in the same user defined bridge network and is named tinyauth
+# Rename /config/nginx/proxy-confs/tinyauth.subdomain.conf.sample to /config/nginx/proxy-confs/tinyauth.subdomain.conf
+
+# location for tinyauth auth requests
+location /tinyauth {
+    internal;
+
+    include /config/nginx/proxy.conf;
+    include /config/nginx/resolver.conf;
+    set $upstream_tinyauth tinyauth;
+    proxy_pass http://$upstream_tinyauth:3000/api/auth/nginx;
+
+    proxy_set_header x-forwarded-proto $scheme;
+    proxy_set_header x-forwarded-host $http_host;
+    proxy_set_header x-forwarded-uri $request_uri;
+}
+
+# virtual location for tinyauth 401 redirects
+location @tinyauth_login {
+    internal;
+
+    ## Set the $target_url variable based on the original request
+    set_escape_uri $target_url $scheme://$http_host$request_uri;
+    
+    ## Set the $signin_url variable
+    set $domain $host;
+    if ($host ~* "^[^.]+\.([^.]+\..+)$") {
+        set $domain $1;
+    }
+    set $signin_url https://tinyauth.$domain/login?redirect_uri=$target_url;
+
+    ## Redirect to login
+    return 302 $signin_url;
+}
--- a/root/etc/s6-overlay/s6-rc.d/init-swag-config/run
+++ b/root/etc/s6-overlay/s6-rc.d/init-swag-config/run
@@ -22,6 +22,14 @@ if [[ ! -f /config/nginx/authentik-server.conf ]]; then
    cp /defaults/nginx/authentik-server.conf.sample /config/nginx/authentik-server.conf
 fi

+# copy tinyauth config files if they don't exist
+if [[ ! -f /config/nginx/tinyauth-location.conf ]]; then
+    cp /defaults/nginx/tinyauth-location.conf.sample /config/nginx/tinyauth-location.conf
+fi
+if [[ ! -f /config/nginx/tinyauth-server.conf ]]; then
+    cp /defaults/nginx/tinyauth-server.conf.sample /config/nginx/tinyauth-server.conf
+fi
+
 # copy old ldap config file to new location
 if [[ -f /config/nginx/ldap.conf ]] && [[ ! -f /config/nginx/ldap-server.conf ]]; then
    cp /config/nginx/ldap.conf /config/nginx/ldap-server.conf
Author	SHA1	Message	Date
LinuxServer-CI	ef2a5f2077	Bot Updating Package Versions Some checks failed Package Trigger Scheduler / package-trigger-scheduler (push) Has been cancelled	2025-06-16 17:39:01 +00:00
Adam	0c910b9a7b	Merge pull request #570 from jlssmt/add-tinyauth	2025-06-16 18:34:21 +01:00
LinuxServer-CI	9ab0f727d0	Bot Updating Package Versions	2025-06-14 03:47:18 +00:00
jlssmt	0d952bcee1	add tinyauth	2025-06-08 17:47:30 +02:00