thary/sp-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
532 Commits 1 Branch 0 Tags
507cc85239d9685c95f945999e4700e6761a6218
Commit Graph

20 Commits

Author SHA1 Message Date
nhnn
ff58cfa2f1 fix: allow to pass multiple origin urls in auth module 2025-09-10 20:52:51 +03:00
Inex Code
815ef6c1c6 fix: hotfix kanidm 2025-09-09 01:45:36 +03:00
nhnn
73cbdf994e refactor: switch to upstream nixos kanidm module 2025-09-05 15:31:49 +03:00
nhnn
59806327d1 fix: don't create admin group if service doesn't have it 2025-08-29 12:25:16 +03:00
nhnn
cf160379c0 fix: disable kanidm anon account in kanidm unit 2025-07-23 16:47:02 +03:00
nhnn
66cbd47d77 fix: SECURITY: disable kanidm anonymous account 2025-07-09 15:11:04 +03:00
nhnn
ee5b7fdddc fix: wait for kanidm to start 2025-07-03 18:22:32 +03:00
nhnn
14e8cf359d fix: various kanidm, jitsi and general fixes 2025-07-03 18:22:16 +03:00
nhnn
86233cac27 style: format tree 2025-06-18 19:53:44 +03:00
Alexander Tomokhov
72472e8edf auth: do not create sp.selfprivacy-api.* groups 2025-04-22 21:17:59 +04:00
Alexander Tomokhov
849b695aa4 auth: create a proper selfprivacy-api token via auth module 
- selfprivacy-api NixOS module can use selfprivacy.auth.clients option
  to configure its own client
- when "selfprivacy-api" OAuth ID name is used, read-write token is
  created and idm_admins membership is set
 2025-04-22 01:26:29 +04:00
Alexander Tomokhov
69a5103f8b refact auth: systemd.tmpfiles for /run/keys/selfprivacy-api; comments 2025-04-21 20:22:40 +04:00
Alexander Tomokhov
a96b6b8444 auth: add only roundcube kanidm service account to idm_mail_servers 2025-04-21 20:22:40 +04:00
Alexander Tomokhov
46971cd2be auth:module: replace special symbols in generated secrets 2025-04-17 13:20:07 +04:00
Alexander Tomokhov
56a56b67b4 auth: add imageFile option 2025-04-17 13:20:07 +04:00
Alexander Tomokhov
9d7fa8ec7d clean auth/auth.nix and auth/auth-module.nix 2025-04-12 11:06:47 +04:00
Alexander Tomokhov
63ce4d9143 fix auth: name of /run/keys/* folder equals to linux group name 2025-04-11 21:25:11 +04:00
Alexander Tomokhov
b87c37afa2 auth: rewrite /run/keys/* creation to tmpfiles.d 2025-04-11 19:36:11 +04:00
Alexander Tomokhov
3f95b80c3c auth module: add originLanding option 2025-03-26 15:57:59 +04:00
Alexander Tomokhov
8013f2e394 auth: module for easier integration of new services with Kanidm 
- Forgejo is migrated to this module.
 2025-03-21 16:40:18 +04:00