Pangolin
Replies: 1 comment 1 reply
-
|
Did you ever sort this out? I’m facing a similar issue and looking for some clues about what’s not working. Thanks |
Beta Was this translation helpful? Give feedback.
1 reply
-
|
No, I didn't. I opted to remove the subdomain, sacrificing that clear separation. |
Beta Was this translation helpful? Give feedback.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Hi, I am struggling with this problem:
server1is hosting different services, including Authentik (2025.10.3). All those services are reachable local only via TLS served by traefik with a wildcard domain cert*.example.com.vpsis publicly available in a different location and running Pangolin to accessserver1through newt. Pangolin is configured to serve domainpangolin.gw.example.comand has a wildcard cert for*.gw.example.com.authentikwith URLhttps://authentik.gw.example.com. Target is the newt site withhttps://authentik.example.comon port 443. Setting Host and SNI Headers in Pangolinmakes the authentik dashboard reachable, but with message:
Browser devtools network tab reveals what seems to me like a wrong redirect:
I would expect
authentik.gw.example.comalso for the/apirequests instead ofauthentik.example.com. I have the same issue with nextcloud, login page appears but then requests get forwarded tonextcloud.example.cominstead of staying onnextcloud.gw.example.com.Did I forget to configure something? I thought it was a good idea to not use the same wildcard cert and a different subdomain for clear separation of access via pangolin and local. Am I mistaken?
Beta Was this translation helpful? Give feedback.
All reactions