traveler/Netgrimoire
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
Netgrimoire/Netgrimoire/Audits/authentik-2026-04-03.md
traveler cc574f8aed New Grimoire
2026-04-12 09:53:51 -05:00

1.5 KiB
Raw Blame History

title description published date tags editor dateCreated
Audit - authentik.yaml Gremlin audit report 2026-04-03 true 2026-04-03T02:36:24.241Z gremlin,audit markdown 2026-04-03T02:36:24.241Z

Audit Report — authentik.yaml

Date: 2026-04-03
File: swarm/authentik.yaml
Type: Docker Swarm
Verdict: FAIL

SWARM AUDIT REPORT

  1. Homepage labels

    • homepage.group: PASS
    • homepage.name: PASS
    • homepage.icon: PASS
    • homepage.href: PASS
    • homepage.description: PASS

  2. Uptime Kuma labels

    • No Uptime Kuma service found, hence no labels to check.

  3. Caddy labels on exposed services

    • caddy=auth.netgrimoire.com and caddy.reverse_proxy="{{upstreams 9000}}": PASS

  4. Placement constraints

    • node.hostname == znas: PASS for all services

  5. Volumes use /DockerVol/ path convention

    • /DockerVol/Authentik/Postgres, /DockerVol/Authentik/redis, /DockerVol/Authentik/media, /DockerVol/Authentik/custom-templates: PASS
    • /var/run/docker.sock for worker service: FAIL

  6. Network references external netgrimoire overlay

    • netgrimoire network is referenced by both authentik and worker services, and it is set to external: true: PASS

Fixes Required

  • Update the worker service volume /var/run/docker.sock:/var/run/docker.sock to match the convention by using a Docker volume or bind mount with /DockerVol/Authentik/docker.sock.

VERDICT: FAIL