tempo: require basic auth for all requests except from private ranges

This commit is contained in:
Tigor Hutasuhut 2024-09-07 09:55:03 +07:00
parent e8fc018fb4
commit 9706e7f2b3

View file

@ -34,11 +34,13 @@ in
}; };
services.caddy.virtualHosts.${domain}.extraConfig = '' services.caddy.virtualHosts.${domain}.extraConfig = ''
basicauth { @require_auth not remote_ip private_ranges
basicauth @require_auth {
{$TEMPO_USERNAME} {$TEMPO_PASSWORD} {$TEMPO_USERNAME} {$TEMPO_PASSWORD}
} }
reverse_proxy ${server.http_listen_address}:${toString server.http_listen_port} reverse_proxy ${server.http_listen_address}:3200
''; '';
services.tempo = { services.tempo = {