feat[work,server,client]: add opkssh

2025-12-06 09:07:21 +01:00 · 2025-11-04 15:45:52 +01:00 · 2025-11-04 15:45:52 +01:00 · c9e7e493d8
commit c9e7e493d8
parent 3b368ec8de
14 changed files with 604 additions and 340 deletions
--- a/modules/home/common/opkssh.nix
+++ b/modules/home/common/opkssh.nix
@ -0,0 +1,30 @@
+{ lib, config, ... }:
+let
+  moduleName = "opkssh";
+in
+{
+  options.swarselmodules.${moduleName} = lib.mkEnableOption "enable ${moduleName} and settings";
+  config = lib.mkIf config.swarselmodules.${moduleName} {
+    programs.${moduleName} = {
+      enable = true;
+      settings = {
+        default_provider = "kanidm";
+
+        providers = [
+          {
+            alias = "kanidm";
+            issuer = "https://sso.swarsel.win/oauth2/openid/opkssh";
+            client_id = "opkssh";
+            scopes = "openid email profile";
+            redirect_uris = [
+              "http://localhost:3000/login-callback"
+              "http://localhost:10001/login-callback"
+              "http://localhost:11110/login-callback"
+            ];
+          }
+        ];
+      };
+    };
+  };
+
+}