servius/dotfiles
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

feat: Remove authelia oidc for now

Browse Source
This commit is contained in:
uttarayan21
2025-07-28 17:51:06 +05:30
parent d73f1b8838
commit 5c1b79f748
2 changed files with 35 additions and 65 deletions
Download Patch File Download Diff File Expand all files Collapse all files

98
nixos/mirai/services/authelia.nix
View File

@@ -22,40 +22,40 @@
path = "/run/secrets/users"; path = "/run/secrets/users";
}; };
}; };
identity_providers = { # identity_providers = {
odic = { # oidc = {
clients = [ # clients = [
{ # {
client_id = "immich"; # client_id = "immich";
client_name = "immich"; # client_name = "immich";
client_secret = ''{{ fileContent "${config.sops.secrets."authelia/oidc/immich".path}" }}''; # client_secret = ''{{ fileContent "${config.sops.secrets."authelia/oidc/immich".path}" }}'';
public = false; # public = false;
authorization_policy = "two_factor"; # authorization_policy = "two_factor";
require_pkce = false; # require_pkce = false;
pkce_challenge_method = ""; # pkce_challenge_method = "";
redirect_uris = [ # redirect_uris = [
"https://photos.darksailor.dev/auth/login" # "https://photos.darksailor.dev/auth/login"
"https://photos.darksailor.dev/user-settings" # "https://photos.darksailor.dev/user-settings"
"app.immich:///oauth-callback" # "app.immich:///oauth-callback"
]; # ];
scopes = [ # scopes = [
"openid" # "openid"
"profile" # "profile"
"email" # "email"
]; # ];
response_types = [ # response_types = [
"code" # "code"
]; # ];
grant_types = [ # grant_types = [
"authorization_code" # "authorization_code"
]; # ];
access_token_signed_response_alg = "none"; # access_token_signed_response_alg = "none";
userinfo_signed_response_alg = "none"; # userinfo_signed_response_alg = "none";
token_endpoint_auth_method = "client_secret_post"; # token_endpoint_auth_method = "client_secret_post";
} # }
]; # ];
}; # };
}; # };
session = { session = {
cookies = [ cookies = [
{ {
@@ -67,36 +67,6 @@
}; };
access_control = { access_control = {
default_policy = "one_factor"; default_policy = "one_factor";
rules = [
# {
# domain = "darksailor.dev";
# policy = "one_factor";
# }
# {
# domain = "cloud.darksailor.dev";
# policy = "one_factor";
# }
# {
# domain = "code.darksailor.dev";
# policy = "one_factor";
# }
# {
# domain = "media.darksailor.dev";
# policy = "one_factor";
# }
# {
# domain = "music.darksailor.dev";
# policy = "one_factor";
# }
# {
# domain = "music.darksailor.dev";
# policy = "bypass";
# resources = [
# "^/rest([/?].*)?$"
# "^/share([/?].*)?$"
# ];
# }
];
}; };
storage = { storage = {
local = { local = {

2
nixos/mirai/services/immich.nix
View File

@@ -1,5 +1,5 @@
{...}: { {...}: {
services.immich = { services.immich = {
enable = true; enable = false;
}; };
} }