More flexible server.address configuration (file descriptor, PROXY...) #5971
Labels
priority/4/normal
Normal priority items
status/needs-design
Requires thoughtful design
type/feature
Request for adding a new feature
Description
First of all, thank you for this nice project!
I would like to deploy authelia using systemd sockets (systemd opens the privileged port and handles it to authelia).
Looking at the code, it seems that
server.address
currently supportstcp(4|6)
andunix
(with?umask
).It would be nice if listening to file descriptor was possible.
Use Case
Better integration with systemd (so that the authelia service does not need to bind on any socket).
Details
Instead of reinventing the wheel, maybe something like https://github.com/AGWA/go-listener/ could be used. It allows to create a
net.Listener
by parsing a string. For instance:Those listeners can also be wrapped, by prepending them. For instance the
tls
subpackage allows:Another (currently) missing feature of
go-listener
is client certificates. I could also look into implementing them upstream or in a dedicated package.Example of the proposed change on the config
Current
Proposed:
Other examples:
Contributing
I would be willing to craft a PR, if you think that this approach sound sensible.
Documentation
No response
Pre-Submission Checklist
I agree to follow the Code of Conduct
I have checked for related issues and checked the documentation
The text was updated successfully, but these errors were encountered: