treewide: update hostname of keycloak to idp.rebmit.moe
This commit is contained in:
parent
0f462a2813
commit
f0397c273a
SSH key fingerprint:
SHA256:3px8QV1zEerIrEWHaqtH5rR9kjetyRST5EipOPrd+bU
|
|
@ -16,7 +16,7 @@
|
||||||
http-host = "127.0.0.1";
|
http-host = "127.0.0.1";
|
||||||
http-port = config.networking.ports.keycloak;
|
http-port = config.networking.ports.keycloak;
|
||||||
proxy-headers = "xforwarded";
|
proxy-headers = "xforwarded";
|
||||||
hostname = "id.rebmit.moe";
|
hostname = "idp.rebmit.moe";
|
||||||
cache = "local";
|
cache = "local";
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
@ -25,7 +25,7 @@
|
||||||
MemoryDenyWriteExecute = false;
|
MemoryDenyWriteExecute = false;
|
||||||
};
|
};
|
||||||
|
|
||||||
services.caddy.virtualHosts."id.rebmit.moe" = {
|
services.caddy.virtualHosts."idp.rebmit.moe" = {
|
||||||
extraConfig = ''
|
extraConfig = ''
|
||||||
reverse_proxy ${config.services.keycloak.settings.http-host}:${toString config.services.keycloak.settings.http-port}
|
reverse_proxy ${config.services.keycloak.settings.http-host}:${toString config.services.keycloak.settings.http-port}
|
||||||
'';
|
'';
|
||||||
|
|
|
||||||
|
|
@ -48,8 +48,8 @@
|
||||||
oidc_providers = [
|
oidc_providers = [
|
||||||
{
|
{
|
||||||
idp_id = "keycloak";
|
idp_id = "keycloak";
|
||||||
idp_name = "id.rebmit.moe";
|
idp_name = "idp.rebmit.moe";
|
||||||
issuer = "https://id.rebmit.moe/realms/rebmit";
|
issuer = "https://idp.rebmit.moe/realms/rebmit";
|
||||||
client_id = "synapse";
|
client_id = "synapse";
|
||||||
client_secret_path = config.sops.secrets."synapse/oidc-client-secret".path;
|
client_secret_path = config.sops.secrets."synapse/oidc-client-secret".path;
|
||||||
scopes = [
|
scopes = [
|
||||||
|
|
|
||||||
|
|
@ -20,8 +20,8 @@
|
||||||
OAUTH2_CLIENT_ID = "miniflux";
|
OAUTH2_CLIENT_ID = "miniflux";
|
||||||
OAUTH2_CLIENT_SECRET_FILE = "/run/credentials/miniflux.service/oidc-client-secret";
|
OAUTH2_CLIENT_SECRET_FILE = "/run/credentials/miniflux.service/oidc-client-secret";
|
||||||
OAUTH2_REDIRECT_URL = "${BASE_URL}/oauth2/oidc/callback";
|
OAUTH2_REDIRECT_URL = "${BASE_URL}/oauth2/oidc/callback";
|
||||||
OAUTH2_OIDC_PROVIDER_NAME = "id.rebmit.moe";
|
OAUTH2_OIDC_PROVIDER_NAME = "idp.rebmit.moe";
|
||||||
OAUTH2_OIDC_DISCOVERY_ENDPOINT = "https://id.rebmit.moe/realms/rebmit";
|
OAUTH2_OIDC_DISCOVERY_ENDPOINT = "https://idp.rebmit.moe/realms/rebmit";
|
||||||
OAUTH2_USER_CREATION = 1;
|
OAUTH2_USER_CREATION = 1;
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
|
||||||
|
|
@ -106,7 +106,7 @@ in
|
||||||
targets = [
|
targets = [
|
||||||
"https://rebmit.moe"
|
"https://rebmit.moe"
|
||||||
"https://chat.rebmit.moe"
|
"https://chat.rebmit.moe"
|
||||||
"https://id.rebmit.moe"
|
"https://idp.rebmit.moe"
|
||||||
"https://rss.rebmit.moe"
|
"https://rss.rebmit.moe"
|
||||||
];
|
];
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -46,7 +46,7 @@ dns.lib.toString "rebmit.moe" {
|
||||||
subdomains = {
|
subdomains = {
|
||||||
chat.CNAME = [ "suwako-vie0.rebmit.link." ];
|
chat.CNAME = [ "suwako-vie0.rebmit.link." ];
|
||||||
git.CNAME = [ "suwako-vie0.rebmit.link." ];
|
git.CNAME = [ "suwako-vie0.rebmit.link." ];
|
||||||
id.CNAME = [ "suwako-vie0.rebmit.link." ];
|
idp.CNAME = [ "suwako-vie0.rebmit.link." ];
|
||||||
prom.CNAME = [ "fallback.workers.moe." ];
|
prom.CNAME = [ "fallback.workers.moe." ];
|
||||||
push.CNAME = [ "suwako-vie1.rebmit.link." ];
|
push.CNAME = [ "suwako-vie1.rebmit.link." ];
|
||||||
rss.CNAME = [ "suwako-vie0.rebmit.link." ];
|
rss.CNAME = [ "suwako-vie0.rebmit.link." ];
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue