diff options
| -rw-r--r-- | CREDITS.md | 1 | ||||
| -rw-r--r-- | docs/en/admins/16_OpenID-Connect-Authentik.md | 2 |
2 files changed, 3 insertions, 0 deletions
diff --git a/CREDITS.md b/CREDITS.md index 4659c1bdf..848cefb5e 100644 --- a/CREDITS.md +++ b/CREDITS.md @@ -194,6 +194,7 @@ People are sorted by name so please keep this order. * [Nainor](https://github.com/Nainor): [contributions](https://github.com/FreshRSS/FreshRSS/pulls?q=is:pr+author:Nainor) * [nanhualyq](https://github.com/nanhualyq): [contributions](https://github.com/FreshRSS/FreshRSS/pulls?q=is:pr+author:nanhualyq) * [Natalie Stroud](https://github.com/natastro): [contributions](https://github.com/FreshRSS/FreshRSS/pulls?q=is:pr+author:natastro) +* [netsho](https://github.com/netsho): [contributions](https://github.com/FreshRSS/FreshRSS/pulls?q=is:pr+author:netsho) * [nhirokinet](https://github.com/nhirokinet): [contributions](https://github.com/FreshRSS/FreshRSS/pulls?q=is:pr+author:nhirokinet) * [Nick Cross](https://github.com/rnc): [contributions](https://github.com/FreshRSS/FreshRSS/pulls?q=is:pr+author:rnc) * [Nico B](https://github.com/youknow0): [contributions](https://github.com/FreshRSS/FreshRSS/pulls?q=is:pr+author:youknow0) diff --git a/docs/en/admins/16_OpenID-Connect-Authentik.md b/docs/en/admins/16_OpenID-Connect-Authentik.md index 2b3c21edd..5afa3ea0f 100644 --- a/docs/en/admins/16_OpenID-Connect-Authentik.md +++ b/docs/en/admins/16_OpenID-Connect-Authentik.md @@ -26,6 +26,7 @@ Without the port number, Authentik will give a `redirect_url` error. You will need to choose a signing key. If you don’t have one, generate one under *System > Certificates*. The default `authentik Self-Signed Certificate` will also work. +If using a self-signed certificate issued by your own CA, you will need to mount the following file to the FreshRSS container: `/etc/ssl/certs/ca-certificates.crt:ro`. *Note: The `ca-certificates.crt` need to be mounted as read-only `:ro` to avoid any unwanted modification.* Under *Advanced Protocol Settings > Scopes* you will see that email, openid and profile are selected by default. These are the scopes you will set later in the docker config file. @@ -125,6 +126,7 @@ services: volumes: - freshrss-data:/var/www/FreshRSS/data - freshrss-extensions:/var/www/FreshRSS/extensions + - /etc/ssl/certs/ca-certificates.crt:/etc/ssl/certs/ca-certificates.crt:ro # If using self-signed authentik signing-key issued by your own CA # # Portainer defines the env file as show below, but not needed if using the default `.env` # env_file: # - ../stack.env |