AuthPortal
AuthPortal
Docker app from grtgbln's Repository
Overview
Requirements
Requires a separate Postgres database.
Runtime arguments
- Web UI
http://[IP]:[PORT:8080]/- Network
bridge- Privileged
- false
Template configuration
Container Port: 8080
- Target
- 8080
- Default
- 8080
- Value
- 8080
Postgres database connection URL
- Target
- DATABASE_URL
- Default
- postgres://POSTGRES_USER:POSTGRES_PASSWORD@POSTGRES_IP:5432/AuthPortaldb?sslmode=disable
- Value
- postgres://POSTGRES_USER:POSTGRES_PASSWORD@POSTGRES_IP:5432/AuthPortaldb?sslmode=disable
Public URL of this service. If using HTTPS, cookies will be marked Secure.
- Target
- APP_BASE_URL
- Default
- http://IP_ADDRESS:PORT
- Value
- http://IP_ADDRESS:PORT
Comma-separated list of trusted proxy CIDR ranges for forwarded headers
- Target
- TRUSTED_PROXY_CIDRS
Type of media server to authenticate against
- Target
- MEDIA_SERVER
- Default
- plex|emby|jellyfin
HMAC secret for JWT cookie
- Target
- SESSION_SECRET
Base64 32-byte key for sealing tokens at rest
- Target
- DATA_KEY
Set to 1 to force Secure on cookies (behind TLS/ingress)
- Target
- FORCE_SECURE_COOKIE
- Default
- 0|1
Set to 1 to force HSTS headers even if APP_BASE_URL is http (when TLS terminates upstream)
- Target
- FORCE_HSTS
- Default
- 0|1
External URL on authorized page
- Target
- LOGIN_EXTRA_LINK_URL
Text for external URL on authorized page
- Target
- LOGIN_EXTRA_LINK_TEXT
Email address for unauthorized page request access link
- Target
- UNAUTH_REQUEST_EMAIL
Subject for unauthorized page request access email
- Target
- UNAUTH_REQUEST_SUBJECT
Token from Plex server owner; used to validate server membership.
- Target
- PLEX_OWNER_TOKEN
Machine ID of your Plex server (preferred over name).
- Target
- PLEX_SERVER_MACHINE_ID
Optional: Plex server name (used if machine ID not set).
- Target
- PLEX_SERVER_NAME
URL of your Emby server (e.g. http://IP:PORT).
- Target
- EMBY_SERVER_URL
API key from your Emby server.
- Target
- EMBY_API_KEY
Name of the Emby application (for client headers).
- Target
- EMBY_APP_NAME
- Default
- AuthPortal
- Value
- AuthPortal
Version of the Emby application (for client headers).
- Target
- EMBY_APP_VERSION
URL of your Jellyfin server (e.g. http://IP:PORT).
- Target
- JELLYFIN_SERVER_URL
API key from your Jellyfin server.
- Target
- JELLYFIN_API_KEY
Name of the Jellyfin application (for client headers).
- Target
- JELLYFIN_APP_NAME
- Default
- AuthPortal
- Value
- AuthPortal
Version of the Jellyfin application (for client headers).
- Target
- JELLYFIN_APP_VERSION
PEM-encoded private key for OIDC ID token signing
- Target
- OIDC_SIGNING_KEY
Issuer URL for OIDC provider (should match APP_BASE_URL)
- Target
- OIDC_ISSUER_URL
- Default
- http://IP_ADDRESS:PORT
- Value
- http://IP_ADDRESS:PORT
Optional, comma-separated allow-list for absolute OIDC redirect_uri hosts
- Target
- TRUSTED_REDIRECT_HOSTS
Logging level
- Target
- LOG_LEVEL
- Default
- INFO|DEBUG|WARN|ERROR
Download Statistics
Details
modomofn/auth-portal:latestRun AuthPortal on Unraid.
AuthPortal is listed in Community Apps for Unraid OS. Explore Unraid to build a flexible home server, NAS, or homelab.