frigate: map Remote-Role header for admin access via Authelia
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
parent
4a5a30f018
commit
818caf88a2
1 changed files with 8 additions and 1 deletions
|
|
@ -13,7 +13,10 @@
|
||||||
|
|
||||||
settings = {
|
settings = {
|
||||||
mqtt.enabled = false;
|
mqtt.enabled = false;
|
||||||
proxy.header_map.user = "Remote-User";
|
proxy.header_map = {
|
||||||
|
user = "Remote-User";
|
||||||
|
role = "Remote-Role";
|
||||||
|
};
|
||||||
|
|
||||||
cameras.kids_bedroom = {
|
cameras.kids_bedroom = {
|
||||||
enabled = true;
|
enabled = true;
|
||||||
|
|
@ -62,6 +65,10 @@
|
||||||
proxy_set_header X-Forwarded-Host $http_host;
|
proxy_set_header X-Forwarded-Host $http_host;
|
||||||
proxy_set_header X-Forwarded-Uri $request_uri;
|
proxy_set_header X-Forwarded-Uri $request_uri;
|
||||||
proxy_set_header X-Forwarded-For $remote_addr;
|
proxy_set_header X-Forwarded-For $remote_addr;
|
||||||
|
|
||||||
|
# Inject admin role into auth response so Frigate's
|
||||||
|
# auth_request_set $role $upstream_http_remote_role picks it up
|
||||||
|
add_header Remote-Role admin;
|
||||||
'';
|
'';
|
||||||
};
|
};
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue