feat: Added authelia

2024-11-22 16:15:28 +02:00
parent dd899b8317
commit 5a1729328e
2 changed files with 32 additions and 9 deletions
--- a/nixos/mirai/services.nix
+++ b/nixos/mirai/services.nix
@@ -7,16 +7,35 @@
  environment.systemPackages = with pkgs; [
    factorio-headless
  ];
-  # sops = {
-  #   secrets = {
-  #     "authelia/darksailor" = {};
-  #   };
-  # };
+  sops = {
+    secrets = {
+      "authelia/darksailor/jwtSecret" = {
+        owner = config.systemd.services.authelia-darksailor.serviceConfig.User;
+      };
+      "authelia/darksailor/storageEncryptionSecret" = {
+        owner = config.systemd.services.authelia-darksailor.serviceConfig.User;
+      };
+    };
+  };
  services = {
    authelia = {
-      darksailor = {
+      instances.darksailor = {
        enable = true;
-        # user =
+        settings = {
+          # server = {
+          #   address = "unix:///run/authelia/authelia.sock";
+          # };
+          # session.domain = "auth.darksailor.dev";
+          access_control = {
+            rules = {
+            };
+          };
+          storage = "local";
+        };
+        secrets = {
+          jwtSecretFile = config.sops.secrets."authelia/darksailor/jwtSecret".path;
+          storageEncryptionKeyFile = config.sops.secrets."authelia/darksailor/storageEncryptionSecret".path;
+        };
      };
    };
    tailscale = {