m

volumes/conf.d/code.zinomedia.de.conf

@@ -22,20 +22,22 @@ server {
     add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
     add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; style-src 'self' 'unsafe-inline'; font-src 'self' data:;" always;
 
-    # send all requests to the `/validate` endpoint for authorization
+    include "snippets/enable-vouch.conf";  
-    auth_request /validate;
 
-    location = /validate {
+    # # send all requests to the `/validate` endpoint for authorization
-        proxy_pass https://validate.vouch.armos.zinomedia.de;
+    # auth_request /validate;
-    }
 
-    # if validate returns `401 not authorized` then forward the request to the error401block
+    # location = /validate {
-    error_page 401 = @error401;
+    #     proxy_pass https://validate.vouch.armos.zinomedia.de;
+    # }
 
-    location @error401 {
+    # # if validate returns `401 not authorized` then forward the request to the error401block
-        # redirect to Vouch Proxy for login
+    # error_page 401 = @error401;
-        return 302 https://vouch.armos.zinomedia.de/login?url=$scheme://$http_host$request_uri&vouch-failcount=$auth_resp_failcount&X-Vouch-Token=$auth_resp_jwt&error=$auth_resp_err;
+
-    }
+    # location @error401 {
+    #     # redirect to Vouch Proxy for login
+    #     return 302 https://vouch.armos.zinomedia.de/login?url=$scheme://$http_host$request_uri&vouch-failcount=$auth_resp_failcount&X-Vouch-Token=$auth_resp_jwt&error=$auth_resp_err;
+    # }
 
     location / {
         resolver 127.0.0.11;