servius/dotfiles
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

feat: Remove authelia oidc for now

Browse Source
This commit is contained in:
uttarayan21
2025-07-28 17:51:06 +05:30
parent d73f1b8838
commit 5c1b79f748
2 changed files with 35 additions and 65 deletions
Download Patch File Download Diff File Expand all files Collapse all files

98
nixos/mirai/services/authelia.nix
View File

@@ -22,40 +22,40 @@
path = "/run/secrets/users";
};
};
identity_providers = {
odic = {
clients = [
{
client_id = "immich";
client_name = "immich";
client_secret = ''{{ fileContent "${config.sops.secrets."authelia/oidc/immich".path}" }}'';
public = false;
authorization_policy = "two_factor";
require_pkce = false;
pkce_challenge_method = "";
redirect_uris = [
"https://photos.darksailor.dev/auth/login"
"https://photos.darksailor.dev/user-settings"
"app.immich:///oauth-callback"
];
scopes = [
"openid"
"profile"
"email"
];
response_types = [
"code"
];
grant_types = [
"authorization_code"
];
access_token_signed_response_alg = "none";
userinfo_signed_response_alg = "none";
token_endpoint_auth_method = "client_secret_post";
}
];
};
};
# identity_providers = {
# oidc = {
# clients = [
# {
# client_id = "immich";
# client_name = "immich";
# client_secret = ''{{ fileContent "${config.sops.secrets."authelia/oidc/immich".path}" }}'';
# public = false;
# authorization_policy = "two_factor";
# require_pkce = false;
# pkce_challenge_method = "";
# redirect_uris = [
# "https://photos.darksailor.dev/auth/login"
# "https://photos.darksailor.dev/user-settings"
# "app.immich:///oauth-callback"
# ];
# scopes = [
# "openid"
# "profile"
# "email"
# ];
# response_types = [
# "code"
# ];
# grant_types = [
# "authorization_code"
# ];
# access_token_signed_response_alg = "none";
# userinfo_signed_response_alg = "none";
# token_endpoint_auth_method = "client_secret_post";
# }
# ];
# };
# };
session = {
cookies = [
{
@@ -67,36 +67,6 @@
};
access_control = {
default_policy = "one_factor";
rules = [
# {
# domain = "darksailor.dev";
# policy = "one_factor";
# }
# {
# domain = "cloud.darksailor.dev";
# policy = "one_factor";
# }
# {
# domain = "code.darksailor.dev";
# policy = "one_factor";
# }
# {
# domain = "media.darksailor.dev";
# policy = "one_factor";
# }
# {
# domain = "music.darksailor.dev";
# policy = "one_factor";
# }
# {
# domain = "music.darksailor.dev";
# policy = "bypass";
# resources = [
# "^/rest([/?].*)?$"
# "^/share([/?].*)?$"
# ];
# }
];
};
storage = {
local = {