tempo: require basic auth for all requests except from private ranges

This commit is contained in:
Tigor Hutasuhut 2024-09-07 09:55:03 +07:00
parent e8fc018fb4
commit 9706e7f2b3

View file

@ -34,11 +34,13 @@ in
};
services.caddy.virtualHosts.${domain}.extraConfig = ''
basicauth {
@require_auth not remote_ip private_ranges
basicauth @require_auth {
{$TEMPO_USERNAME} {$TEMPO_PASSWORD}
}
reverse_proxy ${server.http_listen_address}:${toString server.http_listen_port}
reverse_proxy ${server.http_listen_address}:3200
'';
services.tempo = {