forked from pub-solar/infra
feat: add keycloak secrets and virtualhost
This commit is contained in:
parent
5139cbe2db
commit
ce24876f3d
|
@ -12,14 +12,18 @@
|
||||||
#owner = "keycloak";
|
#owner = "keycloak";
|
||||||
};
|
};
|
||||||
|
|
||||||
services.caddy.virtualHosts."auth.pub.solar" = {
|
services.nginx.virtualHosts."auth.pub.solar".locations = {
|
||||||
# logFormat = lib.mkForce ''
|
"= /" = {
|
||||||
# output discard
|
extraConfig = ''
|
||||||
# '';
|
return 302 /realms/pub.solar/account;
|
||||||
extraConfig = ''
|
'';
|
||||||
redir / /realms/pub.solar/account temporary
|
};
|
||||||
reverse_proxy :8080
|
|
||||||
'';
|
"/" = {
|
||||||
|
extraConfig = ''
|
||||||
|
proxy_pass http://localhost:8080;
|
||||||
|
'';
|
||||||
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
# keycloak
|
# keycloak
|
||||||
|
|
28
secrets/keycloak-database-password.age
Normal file
28
secrets/keycloak-database-password.age
Normal file
|
@ -0,0 +1,28 @@
|
||||||
|
age-encryption.org/v1
|
||||||
|
-> ssh-ed25519 iDKjwg xPHRh2XZ454Vu8Bki4KhJkJnm2gSBXvUXoSfVUGEf1o
|
||||||
|
R4JxbF+81Enio+Kxg47js5DBFGXpfurYrwQm+NucSl4
|
||||||
|
-> ssh-ed25519 uYcDNw ccOstb41qo9sLYNVmSqZofatPaGu3WQ07e3GiQHHv2s
|
||||||
|
CSLL/6MJ7T6RKCPS43mI4qENXdKHZ+l8lNkThnL+0aA
|
||||||
|
-> ssh-rsa kFDS0A
|
||||||
|
WPdWUnSbcW0XlG69avmb7zZRBjlvUaspohLJA7mAEnB+4/Te/m96TMDka5HAagqj
|
||||||
|
aHD5Sta4hJWvLqk47A6BvRb7UAcY5UaeZE9wPLCkywqrjwHdP2U6yHO8eWCyRhOG
|
||||||
|
E6iGIslokw4JCrTdmpe7Lf/pJwlPnkQUMh699R0VDBWAbaSomuCvHw4pHLoC548B
|
||||||
|
eFSMf40XbOEnpyYKWhZCDYCMljW67QpZg7e1liCY2UY04Bhb1JvRB116lSXcrJtM
|
||||||
|
hqTyk/nPAMB88wjAABHpmK6nh+18FusH9KFTZnKrJHd/kxpxYESm8hltGm4GP9By
|
||||||
|
pd1bF16pEcQzJ3+kaEcWl10YYqJ4GuILAxZ5FPPPOlTyJZfo2CBNMXfKwNTS7Ks9
|
||||||
|
UkWvr+CI8Htj0BRoLqLXcExFRJWUmRxND0suKqUEcmGumBr5kFu/V+z+6DZ0aPck
|
||||||
|
50AO2Rbuog64p22DJ/s8B7AQwNFAzMGBblgRC5aNntB2OV++elAn+mdvLPjjoR8Q
|
||||||
|
zZz55rNhZaI6dl67RtrmXYZOn1V6+550ekS+n0ZxmhUdQMsEOwKJgiW6nYw/nv/2
|
||||||
|
JkxBhsY81XXLtUBW2MRb45BlctkSSTuLl7/ssmyKG6nfLXZv5xexi+jZp698WEKg
|
||||||
|
YsrHX8d5ECxmzHg0eUJ5753d8YuRgkgigUOBHho1/68
|
||||||
|
-> ssh-ed25519 YFSOsg Gak4h6r+RQhOOwKDrCZlbTRH6Bn+hGpnzDJ88c/LTE8
|
||||||
|
7fVZaeJEvl2CwoiigenL7MDthEx4K2W7w/dFfQfDo9k
|
||||||
|
-> ssh-ed25519 iHV63A 0fCHyaYaNW8wBMscEBjlzAPU/+BxCcs3lXmikLzmkyQ
|
||||||
|
yenFiGtXvNBpJzo1AasIsZaFgUErSfa1FG6ddk1CMcY
|
||||||
|
-> ssh-ed25519 BVsyTA z0IJ2RwEMD/OULwA3d0Cu22NxTzVtipSpnIdGyD+N2M
|
||||||
|
O3We2lCnanCIb49CUEdAkde8oEMprDdIOpf5CTuBN8M
|
||||||
|
-> zUyM-grease wD~@=bx; }g peF2/D[e DAu"<=rB
|
||||||
|
|
||||||
|
--- ZjX5sIPRv/FnsH8a8fiZ0oD5lR/gVeweGEm5nsvmeak
|
||||||
|
<EFBFBD><EFBFBD>p<><70><EFBFBD>"<11><><EFBFBD>RbG<62>?A<><Z<>y<EFBFBD>B<EFBFBD><42>
|
||||||
|
*-AL|<7C><><13><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>I<EFBFBD>トウ<EFBE84><EFBDB3>ャ<EFBFBD><EFBDAC><EFBFBD>ト<EFBFBD><EFBE84><EFBFBD>メウ<EFBE92><EFBDB3><EFBFBD><EFBFBD><EFBFBD>ヲヲ<EFBDA6>サ<EFBFBD><EFBDBB>ロ<EFBFBD><EFBE9B><EFBFBD>ツァ」<EFBDA7><EFBDA3><EFBFBD><EFBFBD><EFBFBD>セ<EFBFBD><EFBDBE>ォ<EFBFBD>ュヨ<EFBDAD><EFBE96>
|
|
@ -32,4 +32,6 @@ in {
|
||||||
"mastodon-smtp-password.age".publicKeys = nachtigallKeys ++ baseKeys;
|
"mastodon-smtp-password.age".publicKeys = nachtigallKeys ++ baseKeys;
|
||||||
|
|
||||||
"mastodon-extra-env-secrets.age".publicKeys = nachtigallKeys ++ baseKeys;
|
"mastodon-extra-env-secrets.age".publicKeys = nachtigallKeys ++ baseKeys;
|
||||||
|
|
||||||
|
"keycloak-database-password.age".publicKeys = nachtigallKeys ++ baseKeys;
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in a new issue