miniflux: make it work with custom cert

services/miniflux.yml

@@ -17,6 +17,9 @@ services:
     networks:
       public:
         ipv4_address: 192.168.240.35
+    volumes:
+      # mount local CA to avoid "failed to verify certificate" errors
+      - /etc/ssl/certs/ca-certificates.crt:/etc/ssl/certs/ca-certificates.crt:ro
     labels:
       caddy: miniflux.${DOMAIN_LOCAL}
       caddy.reverse_proxy: "{{ upstreams 8080 }}"
@@ -38,4 +41,6 @@ services:
       - OAUTH2_OIDC_DISCOVERY_ENDPOINT=https://authentik.${DOMAIN}/application/o/miniflux/
       - OAUTH2_USER_CREATION=1
       - OAUTH2_OIDC_PROVIDER_NAME=authentik
+      - INTEGRATION_ALLOW_PRIVATE_NETWORKS=1
+      - FETCHER_ALLOW_PRIVATE_NETWORKS=1
     restart: unless-stopped