From 09d24eecf3a94fff3168d50976d98b69eb9be6f0 Mon Sep 17 00:00:00 2001 From: ediblerope Date: Tue, 7 Apr 2026 20:31:03 +0100 Subject: [PATCH] Fix Authelia forward-auth: use set instead of auth_request_set for redirect URL auth_request_set reads variables from the auth subrequest context where $scheme/$http_host/$request_uri are empty, causing a 500 instead of a 302 redirect. Using set captures from the main request context. Co-Authored-By: Claude Opus 4.6 --- services/nginx.nix | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/services/nginx.nix b/services/nginx.nix index 316fe92..b76c614 100644 --- a/services/nginx.nix +++ b/services/nginx.nix @@ -3,8 +3,8 @@ let # Authelia forward-auth snippet injected into protected locations autheliaAuthConfig = '' + set $target_url $scheme://$http_host$request_uri; auth_request /internal/authelia/authz; - auth_request_set $target_url $scheme://$http_host$request_uri; auth_request_set $user $upstream_http_remote_user; auth_request_set $groups $upstream_http_remote_groups; error_page 401 =302 https://auth.nordhammer.it/?rd=$target_url;