Has anyone tried to configure authelia or authentik with a local nfty server, do you know any way to protect the web interface?
Has anyone tried to configure authelia or authentik with a local nfty server, do you know any way to protect the web interface?
So do you add ‘ntfy.example.com’ in your one/two_factor policies? And then a separate ‘ntfy.example.com’ with the resource regex for bypass policy?
For example:
- domain: - ntfy.example.com policy: two_factor subject: - ["group:admins"] - domain: - ntfy.example.com methods: - GET resources: '^/test([/?].*)?$' policy: bypassI think it is the other way around. In the config file you first add more specific policy, and then the more general one. Because the first policy that the request matches will apply and next rules will not apply. Please refer to the docs, everything is there. There is also a specific section for rule matching.
https://www.authelia.com/configuration/security/access-control/