mirror of
https://github.com/Swarsel/.dotfiles.git
synced 2025-12-06 09:07:21 +01:00
30 lines
812 B
Nix
30 lines
812 B
Nix
{ lib, config, globals, ... }:
|
|
let
|
|
moduleName = "opkssh";
|
|
in
|
|
{
|
|
options.swarselmodules.${moduleName} = lib.mkEnableOption "enable ${moduleName} and settings";
|
|
config = lib.mkIf config.swarselmodules.${moduleName} {
|
|
programs.${moduleName} = {
|
|
enable = true;
|
|
settings = {
|
|
default_provider = "kanidm";
|
|
|
|
providers = [
|
|
{
|
|
alias = "kanidm";
|
|
issuer = "https://${globals.services.kanidm.domain}/oauth2/openid/opkssh";
|
|
client_id = "opkssh";
|
|
scopes = "openid email profile";
|
|
redirect_uris = [
|
|
"http://localhost:3000/login-callback"
|
|
"http://localhost:10001/login-callback"
|
|
"http://localhost:11110/login-callback"
|
|
];
|
|
}
|
|
];
|
|
};
|
|
};
|
|
};
|
|
|
|
}
|