From 347d175a8a2b54b94cc31521fea01b7cf7e7819d Mon Sep 17 00:00:00 2001
From: teutat3s <teutates@mailbox.org>
Date: Sat, 28 Oct 2023 23:00:07 +0200
Subject: [PATCH] feat: add mastodon redirects for OIDC using keycloak

---
 hosts/nachtigall/apps/nginx-mastodon.nix | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/hosts/nachtigall/apps/nginx-mastodon.nix b/hosts/nachtigall/apps/nginx-mastodon.nix
index aa81ce2..4712a59 100644
--- a/hosts/nachtigall/apps/nginx-mastodon.nix
+++ b/hosts/nachtigall/apps/nginx-mastodon.nix
@@ -16,6 +16,18 @@ in
         tryFiles = "$uri @proxy";
       };
 
+      locations."/auth/sign_up".extraConfig = ''
+        return 302 /auth/sign_in;
+      '';
+
+      locations."/auth/confirmation/new".extraConfig = ''
+        return 302 https://auth.pub.solar/realms/pub.solar/login-actions/reset-credentials?client_id=mastodon;
+      '';
+
+      locations."/auth/password/new".extraConfig = ''
+        return 302 https://auth.pub.solar/realms/pub.solar/login-actions/reset-credentials?client_id=mastodon;
+      '';
+
       locations."@proxy" = {
         proxyPass = (if cfg.enableUnixSocket then "http://unix:/run/mastodon-web/web.socket" else "http://127.0.0.1:${toString(cfg.webPort)}");
         proxyWebsockets = true;