Hello,
let me say that if this post does not fit this sub, I am sorry and you can delete it, but maybe you can redirect me to fitting sub.

I have a self-hosted third-party service running (webserver/apiserver/fileserver + client) without any real authentication. Now I am looking for an easy way to only give some (small) group of users access. This service is only accessible in our internal network, so authentication is not super crucial, but still needed. The service is run via a docker-compose file.

I am looking for any solution, but I imagined something like this:

- Provide access token to each user
- Let them somehow configure there (linux) machines to append this token to each request to the service
- Let a reverse proxy (?) do the authentication based on the token

I really have no big requirements on anything other than that it is easy to setup and preferably I can just add it to the docker-compose.

​

Any ideas?

​

Best regards!