admin/deploy-felhom-compose
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: catch-all middleware allow localhost for healthcheck, drop certresolver

Browse Source 
CatchAllMiddleware was intercepting Docker healthcheck requests (Host:
localhost) and internal API calls, returning 404 instead of passing
through. Also removed certresolver from catch-all Traefik router to
avoid cert provisioning issues with HostRegexp(.+).

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
authentik Default Admin
2026-02-23 14:15:49 +01:00
parent df165f7ef0
commit d3f7e39d6d
2 changed files with 5 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
controller/docker-compose.yml
+2 -1
View File
@@ -54,11 +54,12 @@ services:
- "traefik.http.services.controller.loadbalancer.server.port=8080"
- "traefik.docker.network=traefik-public"
# Catch-all: branded error page for stopped/undeployed app subdomains
# Priority 1 = lowest, so running app routers always win.
# No certresolver — uses Traefik's default cert store (previously issued certs).
- "traefik.http.routers.catchall.rule=HostRegexp(`.+`)"
- "traefik.http.routers.catchall.priority=1"
- "traefik.http.routers.catchall.entrypoints=websecure"
- "traefik.http.routers.catchall.tls=true"
- "traefik.http.routers.catchall.tls.certresolver=letsencrypt"
- "traefik.http.routers.catchall.service=controller"
# Health check labels for monitoring
- "felhom.managed=true"