Document Reverse Proxy authentication for API (#84)

I figured out that the reverse proxy authentication for the API is supported (implemented with https://github.com/go-gitea/gitea/pull/26703). This will update the documentation to the current state. Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Co-authored-by: Philipp Arndt <2f.mail@gmx.de> Reviewed-on: https://gitea.com/gitea/docs/pulls/84 Reviewed-by: Lunny Xiao <xiaolunwen@gmail.com> Co-authored-by: philipparndt <philipparndt@noreply.gitea.com> Co-committed-by: philipparndt <philipparndt@noreply.gitea.com>
2026-06-29 23:55:23 +00:00 · 2024-11-12 19:35:18 +00:00
parent 8d114d7c6b
commit e8344b03cb
6 changed files with 54 additions and 6 deletions
--- a/docs/usage/authentication.md
+++ b/docs/usage/authentication.md
@@ -339,6 +339,13 @@ If set `ENABLE_REVERSE_PROXY_FULL_NAME=true`, a user full name expected in `X-WE

 You can also limit the reverse proxy's IP address range with `REVERSE_PROXY_TRUSTED_PROXIES` which default value is `127.0.0.0/8,::1/128`. By `REVERSE_PROXY_LIMIT`, you can limit trusted proxies level.

+You can enable the this authentication method for the API with
+
+```ini
+[service]
+ENABLE_REVERSE_PROXY_AUTHENTICATION_API = true
+```
+
 :::note
-Reverse Proxy Auth doesn't support the API. You still need an access token or basic auth to make API requests.
+When this method is enabled for the API, the reverse proxy is responsible for handling CSRF protection.
 :::