add authelia subdomain conf and add auth support

adguard.subdomain.conf.sample

@@ -13,6 +13,9 @@ server {
     # enable for ldap auth, fill in ldap details in ldap.conf
     #include /config/nginx/ldap.conf;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
     location / {
         # enable the next two lines for http auth
         #auth_basic "Restricted";
@@ -22,6 +25,9 @@ server {
         #auth_request /auth;
         #error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
         include /config/nginx/proxy.conf;
         resolver 127.0.0.11 valid=30s;
         set $upstream_app adguard;

adminer.subfolder.conf.sample

@@ -12,6 +12,9 @@ location ^~ /adminer/ {
     #auth_request /auth;
     #error_page 401 =200 /login;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-location.conf;
+
     include /config/nginx/proxy.conf;
     resolver 127.0.0.11 valid=30s;
     set $upstream_app adminer;

airsonic.subdomain.conf.sample

@@ -14,6 +14,9 @@ server {
     # enable for ldap auth, fill in ldap details in ldap.conf
     #include /config/nginx/ldap.conf;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
     location / {
         # enable the next two lines for http auth
         #auth_basic "Restricted";
@@ -23,6 +26,9 @@ server {
         #auth_request /auth;
         #error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
         include /config/nginx/proxy.conf;
         resolver 127.0.0.11 valid=30s;
         set $upstream_app airsonic;

airsonic.subfolder.conf.sample

@@ -9,6 +9,9 @@ location ^~ /airsonic {
     #auth_request /auth;
     #error_page 401 =200 /login;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-location.conf;
+
     include /config/nginx/proxy.conf;
     resolver 127.0.0.11 valid=30s;
     set $upstream_app airsonic;

authelia.subdomain.conf.sample

@@ -0,0 +1,23 @@
+# make sure that your dns has a cname set for authelia
+
+server {
+    listen 443 ssl;
+    listen [::]:443 ssl;
+
+    server_name authelia.*;
+
+    include /config/nginx/ssl.conf;
+
+    client_max_body_size 0;
+
+    location / {
+
+        include /config/nginx/proxy.conf;
+        resolver 127.0.0.11 valid=30s;
+        set $upstream_app authelia;
+        set $upstream_port 9091;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+
+    }
+}

bazarr.subdomain.conf.sample

@@ -13,6 +13,9 @@ server {
     # enable for ldap auth, fill in ldap details in ldap.conf
     #include /config/nginx/ldap.conf;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
     location / {
         # enable the next two lines for http auth
         #auth_basic "Restricted";
@@ -22,6 +25,9 @@ server {
         #auth_request /auth;
         #error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
         include /config/nginx/proxy.conf;
         resolver 127.0.0.11 valid=30s;
         set $upstream_app bazarr;

bazarr.subfolder.conf.sample

@@ -12,6 +12,9 @@ location ^~ /bazarr/ {
     #auth_request /auth;
     #error_page 401 =200 /login;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-location.conf;
+
     include /config/nginx/proxy.conf;
     resolver 127.0.0.11 valid=30s;
     set $upstream_app bazarr;

beets.subdomain.conf.sample

@@ -14,6 +14,9 @@ server {
     #enable for ldap auth, fill in ldap details in ldap.conf
     #include /config/nginx/ldap.conf;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
     location / {
         #enable the next two lines for http auth
         #auth_basic "Restricted";
@@ -23,6 +26,9 @@ server {
         #auth_request /auth;
         #error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
         include /config/nginx/proxy.conf;
         resolver 127.0.0.11 valid=30s;
         set $upstream_app beets;

beets.subfolder.conf.sample

@@ -9,6 +9,9 @@ location /beets {
     #auth_request /auth;
     #error_page 401 =200 /login;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-location.conf;
+
     include /config/nginx/proxy.conf;
     resolver 127.0.0.11 valid=30s;
     set $upstream_app beets;

bitwarden.subdomain.conf.sample

@@ -14,6 +14,9 @@ server {
     # enable for ldap auth, fill in ldap details in ldap.conf
     #include /config/nginx/ldap.conf;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
     location / {
         # enable the next two lines for http auth
         #auth_basic "Restricted";
@@ -23,6 +26,9 @@ server {
         #auth_request /auth;
         #error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
         include /config/nginx/proxy.conf;
         resolver 127.0.0.11 valid=30s;
         set $upstream_app bitwarden;

boinc.subdomain.conf.sample

@@ -13,6 +13,9 @@ server {
     # enable for ldap auth, fill in ldap details in ldap.conf
     #include /config/nginx/ldap.conf;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
     location / {
         # enable the next two lines for http auth
         #auth_basic "Restricted";
@@ -22,6 +25,9 @@ server {
         #auth_request /auth;
         #error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
         include /config/nginx/proxy.conf;
         proxy_buffering off;
         resolver 127.0.0.11 valid=30s;

booksonic.subdomain.conf.sample

@@ -13,6 +13,9 @@ server {
     # enable for ldap auth, fill in ldap details in ldap.conf
     #include /config/nginx/ldap.conf;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
     location / {
         # enable the next two lines for http auth
         #auth_basic "Restricted";
@@ -22,6 +25,9 @@ server {
         #auth_request /auth;
         #error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
         include /config/nginx/proxy.conf;
         resolver 127.0.0.11 valid=30s;
         set $upstream_app booksonic;

booksonic.subfolder.conf.sample

@@ -9,6 +9,9 @@ location ^~ /booksonic {
     #auth_request /auth;
     #error_page 401 =200 /login;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-location.conf;
+
     include /config/nginx/proxy.conf;
     resolver 127.0.0.11 valid=30s;
     set $upstream_app booksonic;

bookstack.subdomain.conf.sample

@@ -21,6 +21,9 @@ server {
         #auth_request /auth;
         #error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
         include /config/nginx/proxy.conf;
         resolver 127.0.0.11 valid=30s;
         set $upstream_app bookstack;

calibre-web.subdomain.conf.sample

@@ -13,6 +13,9 @@ server {
     # enable for ldap auth, fill in ldap details in ldap.conf
     #include /config/nginx/ldap.conf;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
 	location / {
 		# enable the next two lines for http auth
 		#auth_basic "Restricted";
@@ -22,6 +25,9 @@ server {
 		#auth_request /auth;
 		#error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
     include /config/nginx/proxy.conf;
 		resolver 127.0.0.11 valid=30s;
 		set $upstream_app calibre-web;

calibre-web.subfolder.conf.sample

@@ -12,6 +12,9 @@ location ^~ /calibre-web/ {
     #auth_request /auth;
     #error_page 401 =200 /login;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-location.conf;
+
     resolver 127.0.0.11 valid=30s;
     set $upstream_app calibre-web;
     set $upstream_port 8083;

calibre.subdomain.conf.sample

@@ -13,6 +13,9 @@ server {
     # enable for ldap auth, fill in ldap details in ldap.conf
     #include /config/nginx/ldap.conf;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
     location / {
         # enable the next two lines for http auth
         #auth_basic "Restricted";
@@ -22,6 +25,9 @@ server {
         #auth_request /auth;
         #error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
         resolver 127.0.0.11 valid=30s;
         set $upstream_app calibre;
         set $upstream_port 8080;

calibre.subfolder.conf.sample

@@ -12,6 +12,9 @@ location ^~ /calibre/ {
     #auth_request /auth;
     #error_page 401 =200 /login;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-location.conf;
+
     resolver 127.0.0.11 valid=30s;
     set $upstream_app calibre;
     set $upstream_port 8080;

code-server.subdomain.conf.sample

@@ -13,6 +13,9 @@ server {
     # enable for ldap auth, fill in ldap details in ldap.conf
     #include /config/nginx/ldap.conf;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
     location / {
         # enable the next two lines for http auth
         #auth_basic "Restricted";
@@ -22,6 +25,9 @@ server {
         #auth_request /auth;
         #error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
         include /config/nginx/proxy.conf;
         resolver 127.0.0.11 valid=30s;
         set $upstream_app code-server;

codimd.subdomain.conf.sample

@@ -15,6 +15,9 @@ server {
     # enable for ldap auth, fill in ldap details in ldap.conf
     #include /config/nginx/ldap.conf;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
     location / {
         # enable the next two lines for http auth
         #auth_basic "Restricted";
@@ -24,6 +27,9 @@ server {
         #auth_request /auth;
         #error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
         include /config/nginx/proxy.conf;
         resolver 127.0.0.11 valid=30s;
         set $upstream_app codimd;

couchpotato.subdomain.conf.sample

@@ -13,6 +13,9 @@ server {
     # enable for ldap auth, fill in ldap details in ldap.conf
     #include /config/nginx/ldap.conf;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
     location / {
         # enable the next two lines for http auth
         #auth_basic "Restricted";
@@ -22,6 +25,9 @@ server {
         #auth_request /auth;
         #error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
         include /config/nginx/proxy.conf;
         resolver 127.0.0.11 valid=30s;
         set $upstream_app couchpotato;

couchpotato.subfolder.conf.sample

@@ -9,6 +9,9 @@ location ^~ /couchpotato {
     #auth_request /auth;
     #error_page 401 =200 /login;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-location.conf;
+
     include /config/nginx/proxy.conf;
     resolver 127.0.0.11 valid=30s;
     set $upstream_app couchpotato;

deluge.subdomain.conf.sample

@@ -13,6 +13,9 @@ server {
     # enable for ldap auth, fill in ldap details in ldap.conf
     #include /config/nginx/ldap.conf;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
     location / {
         # enable the next two lines for http auth
         #auth_basic "Restricted";
@@ -22,6 +25,9 @@ server {
         #auth_request /auth;
         #error_page 401 =200 /login;
 
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
         include /config/nginx/proxy.conf;
         resolver 127.0.0.11 valid=30s;
         set $upstream_app deluge;

deluge.subfolder.conf.sample

@@ -12,6 +12,9 @@ location ^~ /deluge/ {
     #auth_request /auth;
     #error_page 401 =200 /login;
 
+    # enable for Authelia
+    #include /config/nginx/authelia-location.conf;
+
     include /config/nginx/proxy.conf;
     resolver 127.0.0.11 valid=30s;
     set $upstream_app deluge;