Mjolnir Comments - Answer Overflow

Mjolnir

•Created by Mjolnir on 3/1/2023 in #help-desk-support

Admin Registration Error - Solved!

Just to close this off, in Authentik, you create an OAuth provider, link the necessary details as per immich docs, remove the Traefik forward auth middleware, then it should be good to go 🙂

9 replies

IImmich

•Created by Mjolnir on 3/1/2023 in #help-desk-support

Admin Registration Error - Solved!

Yes, but I've misunderstood Authentik + traefik works.
I thought I could create an OAuth provider and hook it into my embedded outpost, but it doesn't like that because you can only hook in proxy providers. So I have an OAuth provider and application but no outpost A bit out of scope for this discord server though 🙂

9 replies

IImmich

•Created by Mjolnir on 3/1/2023 in #help-desk-support

Admin Registration Error - Solved!

Yup! Now trying to set up SSO with Authentik 😅

9 replies

IImmich

•Created by Mjolnir on 3/1/2023 in #help-desk-support

Admin Registration Error - Solved!

Solved! I needed to add to the server service:

traefik.http.middlewares.service-immich-api-strip.stripprefix.prefixes: "/api"
traefik.http.routers.media-immich-api.middlewares: secure@file,service-immich-api-strip

traefik.http.middlewares.service-immich-api-strip.stripprefix.prefixes: "/api"
traefik.http.routers.media-immich-api.middlewares: secure@file,service-immich-api-strip

9 replies

IImmich

•Created by Mjolnir on 3/1/2023 in #help-desk-support

Admin Registration Error - Solved!

Docker compose: Here is my yml for the server and web. I do not use the immich proxy:

version: "3.8"

services:
  immich-server:
    image: altran1502/immich-server:release
    entrypoint: ["/bin/sh", "./start-server.sh"]
    networks:
      - traefik_public
      - internal
    deploy:
      labels:
        traefik.enable: "true"
        traefik.http.services.media-immich-api.loadbalancer.server.port: "3001"
        traefik.http.routers.media-immich-api.rule: "Host(`immich.domain.tld`) && Pathprefix(`/api`)"
        traefik.http.routers.media-immich-api.tls: "true"
        traefik.http.routers.media-immich-api.tls.certresolver: "cloudflare"
        traefik.http.routers.media-immich-api.entrypoints: "https"
        traefik.http.routers.media-immich-api.middlewares: "secure@file"
    volumes:
      - /share/appdata/immich/photos:/usr/src/app/upload
    env_file:
      - /share/appdata/config/immich/immich.env
    environment:
      - NODE_ENV=production
    depends_on:
      - redis
      - database
    restart: always

  immich-web:
    image: altran1502/immich-web:release
    entrypoint: ["/bin/sh", "./entrypoint.sh"]
    env_file:
      - /share/appdata/config/immich/immich.env
    networks:
      - traefik_public
      - internal
    deploy:
      labels:
        traefik.enable: "true"
        traefik.http.services.media-immich.loadbalancer.server.port: "3000"
        traefik.http.routers.media-immich.rule: "Host(`immich.domain.tld`)"
        traefik.http.routers.media-immich.tls: "true"
        traefik.http.routers.media-immich.tls.certresolver: "cloudflare"
        traefik.http.routers.media-immich.entrypoints: "https"
        traefik.http.routers.media-immich.middlewares: "secure@file"
    restart: always

  database:
    image: postgres:14
    restart: unless-stopped
    networks:
      - internal
    volumes:
      - "/share/appdata/immich/pgdata:/var/lib/postgresql/data"
    env_file:
      - /share/appdata/config/immich/immich.env

version: "3.8"

services:
  immich-server:
    image: altran1502/immich-server:release
    entrypoint: ["/bin/sh", "./start-server.sh"]
    networks:
      - traefik_public
      - internal
    deploy:
      labels:
        traefik.enable: "true"
        traefik.http.services.media-immich-api.loadbalancer.server.port: "3001"
        traefik.http.routers.media-immich-api.rule: "Host(`immich.domain.tld`) && Pathprefix(`/api`)"
        traefik.http.routers.media-immich-api.tls: "true"
        traefik.http.routers.media-immich-api.tls.certresolver: "cloudflare"
        traefik.http.routers.media-immich-api.entrypoints: "https"
        traefik.http.routers.media-immich-api.middlewares: "secure@file"
    volumes:
      - /share/appdata/immich/photos:/usr/src/app/upload
    env_file:
      - /share/appdata/config/immich/immich.env
    environment:
      - NODE_ENV=production
    depends_on:
      - redis
      - database
    restart: always

  immich-web:
    image: altran1502/immich-web:release
    entrypoint: ["/bin/sh", "./entrypoint.sh"]
    env_file:
      - /share/appdata/config/immich/immich.env
    networks:
      - traefik_public
      - internal
    deploy:
      labels:
        traefik.enable: "true"
        traefik.http.services.media-immich.loadbalancer.server.port: "3000"
        traefik.http.routers.media-immich.rule: "Host(`immich.domain.tld`)"
        traefik.http.routers.media-immich.tls: "true"
        traefik.http.routers.media-immich.tls.certresolver: "cloudflare"
        traefik.http.routers.media-immich.entrypoints: "https"
        traefik.http.routers.media-immich.middlewares: "secure@file"
    restart: always

  database:
    image: postgres:14
    restart: unless-stopped
    networks:
      - internal
    volumes:
      - "/share/appdata/immich/pgdata:/var/lib/postgresql/data"
    env_file:
      - /share/appdata/config/immich/immich.env

9 replies

Gaming

Programming