pocket-id: add service on trantor
- Add pocket-id service with nginx reverse proxy - Domain: auth.baduhai.dev - Uses SQLite database - Generate encryption key stored in age secrets
This commit is contained in:
parent
ce7f597f01
commit
46d811a37e
4 changed files with 29 additions and 0 deletions
17
aspects/hosts/_trantor/pocket-id.nix
Normal file
17
aspects/hosts/_trantor/pocket-id.nix
Normal file
|
|
@ -0,0 +1,17 @@
|
||||||
|
{
|
||||||
|
config,
|
||||||
|
lib,
|
||||||
|
...
|
||||||
|
}:
|
||||||
|
|
||||||
|
{
|
||||||
|
services.pocket-id = {
|
||||||
|
enable = true;
|
||||||
|
environmentFile = "/etc/nixos/secrets/pocket-id.key";
|
||||||
|
settings = {
|
||||||
|
APP_URL = "https://auth.baduhai.dev";
|
||||||
|
TRUST_PROXY = true;
|
||||||
|
ANALYTICS_DISABLED = true;
|
||||||
|
};
|
||||||
|
};
|
||||||
|
}
|
||||||
|
|
@ -23,6 +23,12 @@
|
||||||
host = "trantor";
|
host = "trantor";
|
||||||
public = true;
|
public = true;
|
||||||
}
|
}
|
||||||
|
{
|
||||||
|
name = "pocket-id";
|
||||||
|
domain = "auth.baduhai.dev";
|
||||||
|
host = "trantor";
|
||||||
|
public = true;
|
||||||
|
}
|
||||||
{
|
{
|
||||||
name = "nextcloud";
|
name = "nextcloud";
|
||||||
domain = "cloud.baduhai.dev";
|
domain = "cloud.baduhai.dev";
|
||||||
|
|
|
||||||
1
secrets/pocket-id.key
Normal file
1
secrets/pocket-id.key
Normal file
|
|
@ -0,0 +1 @@
|
||||||
|
/Vg7Fgr1Gy+Jx84+5BwE+I+njloA6DDnCX2K3yVKB9Y=
|
||||||
|
|
@ -32,6 +32,11 @@ in
|
||||||
rotterdam-user
|
rotterdam-user
|
||||||
trantor
|
trantor
|
||||||
];
|
];
|
||||||
|
"pocket-id.key.age".publicKeys = [
|
||||||
|
io-user
|
||||||
|
rotterdam-user
|
||||||
|
trantor
|
||||||
|
];
|
||||||
"miniflux-admincreds.age".publicKeys = [
|
"miniflux-admincreds.age".publicKeys = [
|
||||||
io-user
|
io-user
|
||||||
rotterdam-user
|
rotterdam-user
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue