Restrict OAuth2 Proxy trusted forwarded headers

This commit is contained in:
Marco van Zijl 2026-05-17 11:29:48 +02:00
parent 9ef903d163
commit 8e8c69101e

View File

@ -169,11 +169,12 @@ oauth2-proxy:
- "*" - "*"
configFile: |- configFile: |-
provider = "oidc" provider = "oidc"
oidc_issuer_url = "https://sso.noxxos.nl/application/o/litellm/" oidc_issuer_url = "https://sso.noxxos.nl/application/o/litellm"
redirect_url = "https://litellm.noxxos.nl/oauth2/callback" redirect_url = "https://litellm.noxxos.nl/oauth2/callback"
upstreams = [ "http://litellm:4000" ] upstreams = [ "http://litellm:4000" ]
email_domains = [ "*" ] email_domains = [ "*" ]
reverse_proxy = true reverse_proxy = true
trusted_ips = [ "10.244.0.0/16" ]
pass_authorization_header = true pass_authorization_header = true
pass_access_token = true pass_access_token = true
set_xauthrequest = true set_xauthrequest = true