foodogsquared/nixos-config
1
0
Fork 0
mirror of https://github.com/foo-dogsquared/nixos-config.git synced 2025-01-31 04:58:01 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

hosts/plover: add LDAP server to reverse proxy

Browse Source
This commit is contained in:
Gabriel Arazas 2022-12-29 10:26:15 +08:00
parent bdf862cc91
commit f789e85fcc
1 changed files with 6 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
hosts/plover/default.nix
View File

@ -96,15 +96,9 @@ in
# DNS-related settings. This is nice for automating them putting DNS records
# and other types of stuff.
security.acme = {
defaults = {
dnsProvider = "porkbun";
credentialsFile = config.sops.secrets."plover/lego/env".path;
};
certs = {
"${ldapDomain}".group = config.services.openldap.group;
};
security.acme.defaults = {
dnsProvider = "porkbun";
credentialsFile = config.sops.secrets."plover/lego/env".path;
};
services.openssh.hostKeys = [{
@ -179,12 +173,12 @@ in
};
};
# Keycloak instance.
"${authDomain}" = {
# OpenLDAP server.
"${ldapDomain}" = {
forceSSL = true;
enableACME = true;
locations."/" = {
proxyPass = "http://localhost:${toString config.services.keycloak.settings.http-port}";
proxyPass = "http://localhost:389";
};
};
};