thary/sp-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
421 Commits 1 Branch 0 Tags
0fdcf8a79138d897cd11a14410c512e55eeae947
Commit Graph

45 Commits

Author SHA1 Message Date
Alexander Tomokhov
a5f497d9cf fix forgejo,auth: wait until OAuth2 discovery URL is online 
Previously, Forgejo systemd service failed quickly, because kanidm
reports a notice to systemd before discovery URL is ready.
 2025-04-11 14:07:40 +04:00
Alexander Tomokhov
a10d9cdfb9 forgejo:auth: fix recognition of an admin user 2025-03-29 00:44:10 +04:00
Inex Code
c2e1fa41e9 refactor: rename accessGroup to userGroup 2025-03-28 17:41:04 +03:00
Inex Code
c528ea129f feat: Add SSO field to Forgeo SP mdoule metadata 2025-03-28 17:16:01 +03:00
Inex Code
3144e384a6 fix: Forgejo metadata 2025-03-28 17:15:20 +03:00
Alexander Tomokhov
2ee27353da auth,forgejo: fix originLanding 2025-03-26 15:59:23 +04:00
Alexander Tomokhov
8013f2e394 auth: module for easier integration of new services with Kanidm 
- Forgejo is migrated to this module.
 2025-03-21 16:40:18 +04:00
Alexander Tomokhov
1ff180ad1a add assertions: selfprivacy.sso.enable -> modules.*.enableSso 2025-02-03 02:17:54 +04:00
Alexander Tomokhov
331fa63b33 add options: selfprivacy.sso.enable && selfprivacy.sso.debug 
selfprivacy.sso.enable is true by default.
 2025-02-03 02:17:54 +04:00
Alexander Tomokhov
65548a1e73 SP modules do not depend on selfprivacy.modules.auth 2025-02-03 02:05:05 +04:00
Alexander Tomokhov
ea443d2150 gitea,nextcloud,roundcube,mailserver: depend on kanidm systemd service 2025-02-03 01:05:48 +04:00
Alexander Tomokhov
ee2e404eb8 passthru.selfprivacy -> selfprivacy.passthru 2025-02-03 01:05:48 +04:00
Alexander Tomokhov
29d1759186 merge auth SP module into main configuration; add enableSso option 
`enableSso` is being added to the following SP modules:
* gitea (forgejo)
* nextcloud
* roundcube
* simple-nixos-mailserver
 2025-02-03 00:10:05 +04:00
Alexander Tomokhov
2cc5743152 fix sp-modules: configPathsNeeded, requiring passthru.selfprivacy.auth 2025-01-29 12:53:44 +04:00
Alexander Tomokhov
2ed4cc0dee passthru.selfprivacy.auth.admins-group = "sp.admins" 2025-01-25 23:20:00 +04:00
Alexander Tomokhov
d008fbcc17 auth: sp.full_users group 2025-01-25 01:24:28 +04:00
Alexander Tomokhov
0c7a8d51b0 fix gitea,nextcloud,roundcube: evaluate without auth module 2025-01-24 16:27:48 +04:00
Alexander Tomokhov
f795bc977f fix auth: config.selfprivacy.modules.auth.enable or false 2025-01-17 16:12:22 +04:00
Alexander Tomokhov
5cb3be9a36 fix forgejo: OAuth secret, ExecStartPost ignore failure, subdomain 2025-01-17 16:09:25 +04:00
Alexander Tomokhov
041479a48b fix(auth,forgejo): recognize admins 2025-01-17 16:09:25 +04:00
Alexander Tomokhov
8db13dfccf feat auth,forgejo: OAuth2 and LDAP integration 2025-01-17 15:58:49 +04:00
Inex Code
a4d2c06c64 refactor: Even clearer naming for the manifest version 2024-12-24 21:07:29 +03:00
Inex Code
a13a9fe839 refactor: Clearer naming for the manifest version 2024-12-24 20:55:19 +03:00
Inex Code
cca51699ee feat: Dynamic templating 2024-12-24 20:40:45 +03:00
Inex Code
5218868b33 feat: Server monitroing, NixOS 24.05 (#84) 
Co-authored-by: nhnn <nhnn@disroot.org>
Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-nixos-config/pulls/84
 2024-07-30 19:19:06 +03:00
Inex Code
63daf9d39f fix(forgejo): Apply the selected theme 2024-07-23 02:37:58 +03:00
Inex Code
960f4a3897 feat(forgejo): Add a defaultTheme option 2024-07-23 02:34:57 +03:00
Inex Code
1b62d8af45 fix: Remove 10m caching 2024-07-01 19:13:48 +04:00
Inex Code
2d047aa07f feat: migrate gitea config to forgejo 2024-06-30 22:29:07 +04:00
Inex Code
2b2551e5ba feat: add more service options and change Gitea to Forgejo 2024-06-30 22:09:30 +04:00
Alexander Tomokhov
ad43d31c0c modules: parameterize all subdomains 2024-02-20 14:42:37 +04:00
Alexander Tomokhov
15f5d6096d sp-modules: refactor options types 2023-12-28 13:19:47 +04:00
Alexander Tomokhov
e6496b95a4 useACMEHost for all services 2023-12-22 21:18:05 +04:00
Alexander Tomokhov
dcaf96c773 Revert "Revert "Revert "add wildcard ACME certificate""" 
This reverts commit 4faf8e7dda.
 2023-12-20 17:43:47 +04:00
Alexander Tomokhov
4faf8e7dda Revert "Revert "add wildcard ACME certificate"" 
This reverts commit 0c4d57c33d.
 2023-12-20 16:59:57 +04:00
Alexander Tomokhov
c18f332f5f Revert "use enableACME for all virtualHosts" 
This reverts commit 46366702bc.
 2023-12-19 23:46:42 +04:00
Alexander Tomokhov
46366702bc use enableACME for all virtualHosts 2023-12-19 17:22:32 +04:00
Alexander Tomokhov
0c4d57c33d Revert "add wildcard ACME certificate" 
This reverts commit b37cadff68
(except pleroma virtualHosts).
 2023-12-19 17:22:32 +04:00
Alexander Tomokhov
426e6f72c5 gitea: bind mount /var/lib/gitea 2023-12-19 17:22:32 +04:00
Alexander Tomokhov
b37cadff68 add wildcard ACME certificate 2023-12-19 01:52:27 +04:00
Alexander Tomokhov
365f027326 move nginx exclusive virtualHosts to SP modules 2023-12-18 19:02:54 +04:00
Alexander Tomokhov
d881cc8ce5 upgrade nixpkgs to NixOS 23.11 2023-12-18 18:44:18 +04:00
Alexander Tomokhov
67c2b12c44 sp-modules: get rid of systemd.tmpfiles 
Because it causes troubles when using bind-mounts for /var/lib/*.
 2023-12-18 16:30:40 +04:00
Alexander Tomokhov
7f6c48f978 gitea: RequiresMountsFor and ConditionPathIsMountPoint @ /var/lib/gitea 2023-12-12 20:50:09 +04:00
Alexander Tomokhov
c052f9172a move gitea to SP module 2023-12-04 15:59:22 +04:00