noob-proof reverse proxy with auth

momsi@lemmy.world to Selfhosted@lemmy.world – 25 points –

I am in self hosting for a bit now, have an unraid server and a bunch of services running. Now I want to expose some services through a reverse proxy, but with authentication, preferably google oauth2. I've tried a lot of things, Authentik, Authelia, NPM, and so on. I found everything way to complicated. What I liked the most until now is Caddy with the greenpau/caddy-security module. Very easy config through the caddyfile.... Though the module has to be manually installed after every update of the caddy docker container, thats kind of a turn of for me, since everything else on my server is almost maintainance-free.

You have any suggestions?

.... also this is my first post on lemmy, since I migrated from reddit. ;)

13

You are viewing a single comment

I've always used Nginx for my reverse proxy and their basic_auth directive for password protection. For a homelab setup, I'm not sure why you'd need anything heavier.

Well yeah, basic auth is surely the easiest method ... though I rather like to go the oauth2/OIDC route.

Just wondering why, because you need some justification to take the harder route. Oath2 is enterprise level, developed by Meta, Google, and others to be top-notch. basic_auth works to dissuade intruders.

Unless you have a stalker trying to infiltrate your network, I can only imagine this will cause more headaches than it's worth.