admin/app-catalog-felhom.eu
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

home-assistant: add trusted_proxies entrypoint wrapper

Browse Source 
HA rejects proxied requests (400 Bad Request) without trusted_proxies
in configuration.yaml. Uses entrypoint wrapper pattern (like romm) to
ensure the http config block exists before HA starts.

Handles both fresh deploys (creates full configuration.yaml) and
existing installs (appends http block if missing).

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
authentik Default Admin
2026-02-25 19:10:26 +01:00
parent 56dc87af58
commit ba78eb060f
1 changed files with 23 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
templates/home-assistant/docker-compose.yml
+23
View File
@@ -11,6 +11,29 @@ services:
image: ghcr.io/home-assistant/home-assistant:2026.2.2 image: ghcr.io/home-assistant/home-assistant:2026.2.2
container_name: home-assistant container_name: home-assistant
restart: unless-stopped restart: unless-stopped
entrypoint: ["/bin/sh", "-c"]
command:
- |
# Ensure reverse-proxy (Traefik) trusted_proxies config exists.
# 172.16.0.0/12 covers all Docker bridge networks.
CFG=/config/configuration.yaml
if [ -f "$$CFG" ] && ! grep -q 'trusted_proxies' "$$CFG"; then
printf '\nhttp:\n use_x_forwarded_for: true\n trusted_proxies:\n - 172.16.0.0/12\n' >> "$$CFG"
elif [ ! -f "$$CFG" ]; then
cat > "$$CFG" << 'HACFG'
default_config:
frontend:
themes: !include_dir_merge_named themes
automation: !include automations.yaml
script: !include scripts.yaml
scene: !include scenes.yaml
http:
use_x_forwarded_for: true
trusted_proxies:
- 172.16.0.0/12
HACFG
fi
exec /init
environment: environment:
- TZ=Europe/Budapest - TZ=Europe/Budapest
volumes: volumes: