nathan/homelab
1
0
Fork 0
Code Issues Pull Requests Actions Packages Releases Wiki Activity

fix: add unauthenticated POST router for Ntfy server-to-server publishing

Browse Source
This commit is contained in:
Nathan 2026-05-31 11:54:28 -04:00
parent c7c8db6942
commit cbb63b4cae
1 changed files with 10 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
nodes/heimdall/ntfy/compose.yaml
View File

@ -12,13 +12,22 @@ services:
- proxy-net - proxy-net
labels: labels:
- "traefik.enable=true" - "traefik.enable=true"
# Web UI — protected by Authentik
- "traefik.http.routers.ntfy.rule=Host(`ntfy.castaldifamily.com`)" - "traefik.http.routers.ntfy.rule=Host(`ntfy.castaldifamily.com`)"
- "traefik.http.routers.ntfy.entrypoints=websecure" - "traefik.http.routers.ntfy.entrypoints=websecure"
- "traefik.http.routers.ntfy.tls=true" - "traefik.http.routers.ntfy.tls=true"
- "traefik.http.routers.ntfy.tls.certresolver=cloudflare" - "traefik.http.routers.ntfy.tls.certresolver=cloudflare"
- "traefik.http.routers.ntfy.middlewares=authentik-auth@file" - "traefik.http.routers.ntfy.middlewares=authentik-auth@file"
- "traefik.http.routers.ntfy.service=ntfy"
- "traefik.http.routers.ntfy.priority=1"
# Publish endpoint — POST only, no auth, validated by Ntfy access token
- "traefik.http.routers.ntfy-publish.rule=Host(`ntfy.castaldifamily.com`) && Method(`POST`)"
- "traefik.http.routers.ntfy-publish.entrypoints=websecure"
- "traefik.http.routers.ntfy-publish.tls=true"
- "traefik.http.routers.ntfy-publish.tls.certresolver=cloudflare"
- "traefik.http.routers.ntfy-publish.service=ntfy"
- "traefik.http.routers.ntfy-publish.priority=10"
- "traefik.http.services.ntfy.loadbalancer.server.port=80" - "traefik.http.services.ntfy.loadbalancer.server.port=80"
networks: networks:
proxy-net: proxy-net:
external: true external: true