Fixed login with only ip:port access

2026-01-23 13:32:19 +01:00
parent 3b78959901
commit 877ecf32b4
5 changed files with 214 additions and 89 deletions
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -43,4 +43,23 @@ services:
      # Secret key for sessions - CRITICAL for multi-worker Gunicorn!
      # All workers must use the SAME secret key to decode session cookies
      # Generate with: python3 -c "import secrets; print(secrets.token_hex(32))"
-      - SECRET_KEY=dca6920115b8bbc13c346c75d668a49849590c77d9baaf903296582f24ff816a
+      - SECRET_KEY=dca6920115b8bbc13c346c75d668a49849590c77d9baaf903296582f24ff816a
+      
+      # Reverse Proxy Mode
+      # ------------------
+      # Set to 'true' when accessing through reverse proxy (Authelia, Zoraxy, Nginx, etc.)
+      # Set to 'false' for direct IP:port access (e.g., http://192.168.1.100:5172)
+      #
+      # ENABLE_PROXY=true (Proxy Mode):
+      #   - ProxyFix middleware enabled (handles X-Forwarded-* headers)
+      #   - Secure cookies required (HTTPS only)
+      #   - SameSite=None (allows cross-origin authentication)
+      #   - Access via: https://alias.yourdomain.com
+      #
+      # ENABLE_PROXY=false (Direct Mode) - DEFAULT:
+      #   - ProxyFix middleware disabled
+      #   - Standard cookies (HTTP allowed)
+      #   - SameSite=Lax (standard browser behavior)
+      #   - Access via: http://your-server-ip:5172
+      #
+      - ENABLE_PROXY=false