clean auth/auth.nix and auth/auth-module.nix

2025-04-11 20:59:02 +04:00
parent 63ce4d9143
commit 9d7fa8ec7d
2 changed files with 4 additions and 6 deletions
--- a/auth/auth-module.nix
+++ b/auth/auth-module.nix
@@ -204,7 +204,6 @@ in
      );
    };
  };
-  # (lib.debug.traceValSeq
  config = lib.mkIf config.selfprivacy.sso.enable (
    let
      clientsAttrsList = lib.attrsets.mapAttrsToList
@@ -299,7 +298,6 @@ in
         , originUrl
         , scopeMaps
         , useShortPreferredUsername
-         , subdomain
         , usersGroup
         , ...
         }: {
--- a/auth/auth.nix
+++ b/auth/auth.nix
@@ -246,10 +246,10 @@ lib.mkIf config.selfprivacy.sso.enable {
        (lib.strings.splitString "." domain);

    # TODO consider to pass a value or throw exception if token is not generated
-    mkServiceAccountTokenFP = oauthClientID:
-      "${keys-path}/${oauthClientID}/kanidm-service-account-token";
+    mkServiceAccountTokenFP = linuxGroup:
+      "${keys-path}/${linuxGroup}/kanidm-service-account-token";

-    mkOAuth2ClientSecretFP = oauthClientID:
-      "${keys-path}/${oauthClientID}/kanidm-oauth-client-secret";
+    mkOAuth2ClientSecretFP = linuxGroup:
+      "${keys-path}/${linuxGroup}/kanidm-oauth-client-secret";
  };
 }