From 59b9209846cb1ec1f7421aa140f164787a0ebe56 Mon Sep 17 00:00:00 2001 From: Kenpat7177 Date: Mon, 8 Jun 2026 14:53:57 -0500 Subject: [PATCH] =?UTF-8?q?chore:=20retire=20BookStack=20=E2=80=94=20books?= =?UTF-8?q?=20hosted=20on=20Kavita?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit BookStack is not being used. All books are managed in Kavita (kavita.kitestacks.com). - Reverted bookstack/docker-compose.yml to pre-SSO state (no OIDC env vars, no kitestacks network) - Removed bookstack/.env OIDC secret placeholder - Updated docs/authentik-sso-setup.md: BookStack removed from SSO scope Co-Authored-By: Claude Sonnet 4.6 --- docs/authentik-sso-setup.md | 26 ++++---------------------- 1 file changed, 4 insertions(+), 22 deletions(-) diff --git a/docs/authentik-sso-setup.md b/docs/authentik-sso-setup.md index 5b16353..2c88aee 100644 --- a/docs/authentik-sso-setup.md +++ b/docs/authentik-sso-setup.md @@ -22,7 +22,7 @@ Internet → Cloudflare → cloudflared → [service container] | Pattern | How it works | Services | |---------|-------------|---------| -| Native OIDC/OAuth2 | App calls Authentik directly for login | Grafana, OpenWebUI, Forgejo, BookStack, OpenProject, Kavita | +| Native OIDC/OAuth2 | App calls Authentik directly for login | Grafana, OpenWebUI, Forgejo, OpenProject, Kavita | | Authentik Proxy Provider | Cloudflare tunnel → Authentik (embedded outpost) → service | Shaarli, Uptime Kuma, LiteLLM | --- @@ -35,7 +35,7 @@ Internet → Cloudflare → cloudflared → [service container] | Grafana | grafana.kitestacks.com | 3000 | OAuth2 | ⚠️ env set, Authentik app needed | | Kite AI (OpenWebUI) | ai.kitestacks.com | 8080 | OIDC | ⚠️ env set, Authentik app needed | | Forgejo | gitforge.kitestacks.com | 3000 | OAuth2 | ⚠️ Forgejo admin UI config needed | -| BookStack | books.kitestacks.com* | 80 | OIDC | ⚠️ env set, Authentik app needed, CF tunnel needed | +| BookStack | — | — | — | 🚫 Retired — books hosted on Kavita | | OpenProject | tasks.kitestacks.com | 80 | OIDC | ⚠️ env set, Authentik app needed | | Kavita | kavita.kitestacks.com | 5000 | OIDC | ⚠️ appsettings.json updated, Authentik app needed | | Shaarli | links.kitestacks.com | 80 | Proxy | ⚠️ Authentik Proxy Provider needed + CF tunnel update | @@ -46,7 +46,7 @@ Internet → Cloudflare → cloudflared → [service container] | Node Exporter | node-exporter.kitestacks.com | 9100 | — | 🚫 SSO excluded | | OpenRouter | openrouter.ai | — | — | 🚫 external, excluded | -*BookStack subdomain placeholder — update `APP_URL` in `apps/bookstack/docker-compose.yml`. +*BookStack has been retired. All books are hosted on Kavita (`kavita.kitestacks.com`). --- @@ -116,24 +116,7 @@ Go to **https://auth.kitestacks.com** → Admin Interface. ``` - Restart: `cd ~/docker/kavita && docker compose restart` (if a compose exists) or `docker restart kavita` -#### 4. BookStack - -- **Providers → Create → OAuth2/OpenID Provider** - - Name: `BookStack`, Client ID: `bookstack` - - Redirect URIs: `https://books.kitestacks.com/oidc/callback` - *(adjust to your actual BookStack subdomain)* - - Scopes: `openid`, `email`, `profile` -- **Applications → Create**: Name: `BookStack`, Slug: `bookstack` -- Copy secret → `/home/kenpat/docker/bookstack/.env`: - ``` - BOOKSTACK_OIDC_SECRET= - ``` -- Set the real subdomain in `/home/kenpat/docker/bookstack/docker-compose.yml`: - - Update `APP_URL=https://.kitestacks.com` -- Restart: `cd ~/docker/bookstack && docker compose up -d` -- In Cloudflare dashboard: add tunnel route `.kitestacks.com` → `http://bookstack:80` - -#### 5. OpenProject +#### 4. OpenProject - **Providers → Create → OAuth2/OpenID Provider** - Name: `OpenProject`, Client ID: `openproject` @@ -226,7 +209,6 @@ In the Cloudflare Zero Trust Dashboard → Networks → Tunnels → your tunnel | `status.kitestacks.com` | `http://uptime-kuma:3001` | `http://authentik:9000` | | `llm.kitestacks.com` | (new) | `http://authentik:9000` | | `tasks.kitestacks.com` | `http://openproject:8080` | `http://openproject:80` *(after OpenProject upgrade)* | -| `.kitestacks.com` | (new) | `http://bookstack:80` | ---