fricloud/server-configs
2
0
Fork 0
Code Issues 4 Pull requests Projects Releases Packages Wiki Activity Actions

gerd.lldap: renamed user-pass to admin-user-pass and added bind-user-pass

Browse source
This commit is contained in:
eyjhb 2024-08-10 19:23:17 +02:00
parent 3c808fa3a7
commit 17fb88a8b4
Signed by: eyjhb
GPG key ID: 609F508E3239F920
6 changed files with 16 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

3
machines/gerd/services/authelia.nix
View file

@ -91,6 +91,7 @@ in {
authelia-storage.owner = "authelia-main";
authelia-session.owner = "authelia-main";
authelia-oidc-issuer-privatekey-pem.owner = "authelia-main";
authelia-lldap-bind-user-pass.owner = "authelia-main";
};
users.groups."${config.age.secrets.lldap-bind-user-pass.group}".members = [ config.users.users.authelia-main.name ];
}

4
machines/gerd/services/lldap.nix
View file

@ -12,7 +12,7 @@
environment = {
# always set admin password on startup
LLDAP_LDAP_USER_PASS_FILE = config.age.secrets.lldap-user-pass.path;
LLDAP_LDAP_USER_PASS_FILE = config.age.secrets.lldap-admin-user-pass.path;
# only available on the newest master branch, will be enabled when a
# new version is released.
# https://github.com/lldap/lldap/issues/790
@ -35,6 +35,6 @@
users.users.lldap = { group = "lldap"; isSystemUser = true; };
users.groups.lldap = {};
age.secrets = {
lldap-user-pass.owner = "lldap";
lldap-admin-user-pass.owner = "lldap";
};
}