From bc1a65a0e2c0d74bacfda1525d50510ece9e4837 Mon Sep 17 00:00:00 2001
From: karmacoma <karmacoma@karmacoma.dev>
Date: Sun, 23 Nov 2025 23:24:17 +0000
Subject: [PATCH] Trying to fix header forwards to work correctly as HTTPS

Signed-off-by: karmacoma <karmacoma@karmacoma.dev>
---
 docker-compose.yml | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/docker-compose.yml b/docker-compose.yml
index 89e9e41..0db856d 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -1,4 +1,3 @@
-
 services:
   authentik_postgresql:
     environment:
@@ -40,6 +39,12 @@ services:
       array:
         aliases:
           - auth-core
+    labels:
+      # 1. Define the Middleware (Forces HTTPS protocol header)
+      - "traefik.http.middlewares.authentik-force-https.headers.customrequestheaders.X-Forwarded-Proto=https"
+      # 2. Attach it to Coolify's generated Router
+      # (Note: We usually append 'gzip' as Coolify adds it by default, ensuring we don't remove it)
+      - "traefik.http.routers.https-0-j88cw4skoowsccs4oc44g0wg-authentik_server.middlewares=gzip,authentik-force-https"
   authentik_worker:
     command: worker
     depends_on: