FusionAuth
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    • Login

    Using FusionAuth in Homelab w/Nginx

    Scheduled Pinned Locked Moved
    Q&A
    2
    2
    1.1k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      sycotix
      last edited by

      Hi there!

      Firstly I would like to quickly preface this with the fact that I am not a web developer. I'm an I.T professional in my work life, and at home, I have setup a home lab of sorts to cater to my family friend's needs.

      At this time I am using Authelia and Nginx Proxy Manager, via Docker containers, running on unRAID OS.
      Some of the apps I have behind Authelia include:

      • Sonarr
      • Radarr
      • Jellyfin
      • Few other apps but you get the gist.

      I also have my own OpenLDAP server which is working as a backend for both Authelia and Jellyfin successfully.

      So I have managed to install and set up the basics of FusionAuth, and I'm sitting on the front page and trawling through the web to try and figure out if FusionAuth offers something for my needs.

      From my understanding, it will allow me to add authentication and authorization to a web app if I am developing it. But for the life of me, I can't figure out if it's something I can use for apps that are already finished and I just want to lock them behind FusionAuth with ACL's etc. similar to what Authelia does.

      I apologize if the answer is simple but honestly, I've tried to look everywhere the past two days to no avail.

      TLDR: Can I use FusionAuth with Nginx (or Nginx Proxy Manager) to protect endpoints on a URL level? And using my own OpenLDAP server? SSO?

      Thanks in advance!

      1 Reply Last reply Reply Quote 0
      • danD
        dan
        last edited by dan

        Hiya,

        This looks like a similar question: https://fusionauth.io/community/forum/topic/360/example-docs-for-fusionauth-integration-as-sso-front-end-to-nginx-proxied-apps

        It looks like authelia is slightly different and has tighter integration with nginx, but no support for OIDC.

        It looks like nginx works with OIDC, but only with NGINX plus (which I believe is the version that costs money?): https://github.com/nginxinc/nginx-openid-connect

        If you want to integrate with OpenLDAP, you'd be looking buying a premium version of FusionAuth (Developer or above) because the community edition doesn't support LDAP integration. See the Connectors documentation for more.

        We have an example plugin here for apache, I'm not super familiar with nginx, but maybe you could do something similar: https://github.com/FusionAuth/fusionauth-mod-authnz-external

        Another alternative would be to see if the apps you have have OIDC/SAML integration and directly connect them with FusionAuth, though that doesn't provide the URL level endpoint protection you asked for (only application level).

        --
        FusionAuth - Auth for devs, built by devs.
        https://fusionauth.io

        1 Reply Last reply Reply Quote 0
        • First post
          Last post