mirror of
https://github.com/fosrl/pangolin.git
synced 2026-07-16 06:08:33 -05:00
[GH-ISSUE #175] How to use with Nextcloud? #3267
Reference in New Issue
Block a user
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @jaymgs on GitHub (Feb 9, 2025).
Original GitHub issue: https://github.com/fosrl/pangolin/issues/175
My last step migrating from Cloudflare Tunnels is Nextcloud.
Unfortunately, while I can access the url and login just fine, the Nextcloud apps on desktop and mobile cannot. They are just stuck in a disconnected state, I assume because of the Pangolin authentication that is required first. Any workaround?
@miloschwartz commented on GitHub (Feb 9, 2025):
Yes I think the issue is the auth is preventing the mobile client from connecting. A workaround is to disable Pangolin's auth for Nextcloud since it has it's own auth. We're working on a rules feature that might provide a better solution to this in the future, where you could define certain paths (like the Nextcloud api paths) that would be exempt from auth.
@jaymgs commented on GitHub (Feb 9, 2025):
Of course, why didn't I think of that. I will do this.
Love the project!
@randshell commented on GitHub (Nov 1, 2025):
I have similar concerns. While using rules to disable Pangolin's auth for certain paths is a workaround, by doing so it stops being an identity-aware proxy. In other words, any vulnerability in the whitelisted APIs could be potentially exploited as the requests don't pass through the Pangolin's auth / authz anymore and go straight to the service instead.
I'm exploring hosting the various services, e.g., NextCloud, under a random path to help with this aspect. As long as this random URL string remains private, nobody can even access the service, which can also be checked with a log monitoring solution.