From f789e85fcc4c231bc5760719e824f1c1bf9e05a1 Mon Sep 17 00:00:00 2001
From: Gabriel Arazas <foodogsquared@foodogsquared.one>
Date: Thu, 29 Dec 2022 10:26:15 +0800
Subject: [PATCH] hosts/plover: add LDAP server to reverse proxy

---
 hosts/plover/default.nix | 18 ++++++------------
 1 file changed, 6 insertions(+), 12 deletions(-)

diff --git a/hosts/plover/default.nix b/hosts/plover/default.nix
index 0f722499..d55e7ddc 100644
--- a/hosts/plover/default.nix
+++ b/hosts/plover/default.nix
@@ -96,15 +96,9 @@ in
 
   # DNS-related settings. This is nice for automating them putting DNS records
   # and other types of stuff.
-  security.acme = {
-    defaults = {
-      dnsProvider = "porkbun";
-      credentialsFile = config.sops.secrets."plover/lego/env".path;
-    };
-
-    certs = {
-      "${ldapDomain}".group = config.services.openldap.group;
-    };
+  security.acme.defaults = {
+    dnsProvider = "porkbun";
+    credentialsFile = config.sops.secrets."plover/lego/env".path;
   };
 
   services.openssh.hostKeys = [{
@@ -179,12 +173,12 @@ in
         };
       };
 
-      # Keycloak instance.
-      "${authDomain}" = {
+      # OpenLDAP server.
+      "${ldapDomain}" = {
         forceSSL = true;
         enableACME = true;
         locations."/" = {
-          proxyPass = "http://localhost:${toString config.services.keycloak.settings.http-port}";
+          proxyPass = "http://localhost:389";
         };
       };
     };