mirror of
https://github.com/harryssecret/homelab-nix.git
synced 2025-01-18 21:29:33 +01:00
42 lines
993 B
Nix
42 lines
993 B
Nix
{ config, ... }:
|
|
let
|
|
authentik-version = "2024.6.1";
|
|
authentik-nix-src = builtins.fetchTarball {
|
|
url = "https://github.com/nix-community/authentik-nix/archive/version/${authentik-version}.tar.gz";
|
|
sha256 = "15b9a2csd2m3vwhj3xc24nrqnj1hal60jrd69splln0ynbnd9ki4";
|
|
};
|
|
authentik-nix = import authentik-nix-src;
|
|
cfg = config.authentik;
|
|
in
|
|
{
|
|
imports = [ authentik-nix.nixosModules.default ];
|
|
|
|
sops.secrets."authentik" = {
|
|
sopsFile = ../secrets/authentik.env;
|
|
format = "dotenv";
|
|
};
|
|
|
|
/*
|
|
sops.secrets.mail-server = {
|
|
sopsFile = ./secrets/mail.json;
|
|
format = "json";
|
|
};
|
|
*/
|
|
|
|
services.authentik = {
|
|
enable = true;
|
|
environmentFile = config.sops.secrets."authentik".path;
|
|
settings = {
|
|
/*
|
|
email = {
|
|
host = config.sops.secrets.mail-server."host";
|
|
username = config.sops.secrets.mail-server."username";
|
|
};
|
|
*/
|
|
|
|
disable_startup_analytics = true;
|
|
avatars = "initials";
|
|
};
|
|
};
|
|
}
|