Merge pull request 'Fix Prowlarr authentication mode conflict using shared Authentik middleware' (#2) from patch/auth_mode_conflict-prowlarr-2026-06-01 into main

Reviewed-on: #2

nodes/heimdall/prowlarr/compose.yaml

@@ -25,19 +25,11 @@ services:
     restart: unless-stopped
     networks:
       - proxy-net
-  prowlarr_outpost:
-    image: ghcr.io/goauthentik/proxy:2026.2.2
-    container_name: prowlarr_outpost
-    networks:
-      - proxy-net
-    environment:
-      AUTHENTIK_HOST: https://sso.castaldifamily.com
-      AUTHENTIK_TOKEN: 42FCcV9gmTfixaak77xW4eAZIMUUJ0u5vGsxvumfo1Lav5DIyLViDz4xqinE
-      AUTHENTIK_INSECURE: "false"
     labels:
       - "traefik.enable=true"
       - "traefik.http.routers.prowlarr-proxy.entrypoints=websecure"
       - "traefik.http.routers.prowlarr-proxy.rule=Host(`prowlarr.castaldifamily.com`)"
       - "traefik.http.routers.prowlarr-proxy.tls=true"
       - "traefik.http.routers.prowlarr-proxy.tls.certresolver=cloudflare"
-      - "traefik.http.services.prowlarr-proxy.loadbalancer.server.port=9000"
+      - "traefik.http.routers.prowlarr-proxy.middlewares=authentik-auth@file,security-headers@file"
+      - "traefik.http.services.prowlarr-proxy.loadbalancer.server.port=9696"