fi/nix-infra
1
2
Fork 1
Code Issues Pull requests Projects Releases Packages Wiki Activity
nix-infra/config/hosts/keycloak/keycloak.nix

22 lines
543 B
Nix
Raw Blame History

{ ... }:
{
services.keycloak = {
enable = true;
settings = {
hostname = "https://id.nekover.se";
hostname-admin = "https://keycloak-admin.nekover.se";
proxy-headers = "xforwarded";
http-enabled = true;
http-host = "127.0.0.1";
http-port = 8080;
};
database.passwordFile = "/run/secrets/keycloak-database-password";
};
sops.secrets."keycloak-database-password" = {
mode = "0440";
owner = "root";
group = "systemd-network";
restartUnits = [ "keycloak.service" ];
};
}
Reference in a new issue View git blame Copy permalink