Extra Auth

I don't have that setup currently but it's what I am looking for.
I feel that opening services like Immich to the web would be more secure if they had an extra step.

Hi all.

I’ve spent some time reading but either I can’t find the feature or it simply doesn’t exist.
I understand that Cloudron has a user system and can act as an SSO provider with apps that support it.

What I am wondering is, is there a way to add an extra auth step? For example like Authentik or Authelia where you must authenticate before you even see the app.

For example say I installed Immich and then enabled this feature, I would need to login/auth before I even saw the Immich login page?

Is this possible/available?

@jk said in IPv6 only Cloudron:

@dimtar To clarify: the VM can make connections to IPv4, but is not accessible inboud from IPv4, only from IPv6?

That's correct, this is just at home with a VM that has IPv4 connection to the internet but is behind a NAT as per standard residential connections. IPv6 is open on the inbound yes.

Spun up a new VM, Cloudron was happy to get the certs but it didn't set any AAAA records only the A record which for NAT reasons isn't correct.
So far its letting me proceed so I will see what I can do. Thank you

So I spun up a local virtual machine at my home which has an IPv4 (NAT) and an IPv6 address too. The firewall is set to allow traffic via port 80 and 443 to this box but only for IPv6 because I have no public IPv4 available.

The install was going well until it got to the section where it creates a certificate, it seems like this only works via IPv4 as the log showed the ACME challenge (or whatever its called) failing over and over again.

Also looking at setting up a few ipv6 only instances, keen to hear if anyone has this working 100%