katzen-cafe/modules/keycloak.nix

{ pkgs, ... }:
{
  services.keycloak = {
    enable = true;

    settings = {
      http-port = 8097;
      proxy = "edge";
      hostname = "auth.katzen.cafe";
      hostname-strict-backchannel = true;
    };

    database = {
      type = "postgresql";
      createLocally = true;

      username = "keycloak";
      passwordFile = "/run/keys/keycloakDbPw";
    };
  };
  deployment.keys."keycloakDbPw" = {
    keyCommand = [ "cat" "/home/jade/keys-tmp/keycloak-db" ];
    destDir = "/run/keys/";
  };
}
continuing things 2023-04-26 21:25:04 +00:00			`{ pkgs, ... }:`
			`{`
			`services.keycloak = {`
			`enable = true;`

			`settings = {`
			`http-port = 8097;`
			`proxy = "edge";`
			`hostname = "auth.katzen.cafe";`
afkjdlsjdlkfajlk keycloak 2023-04-26 23:48:20 +00:00			`hostname-strict-backchannel = true;`
continuing things 2023-04-26 21:25:04 +00:00			`};`

			`database = {`
afkjdlsjdlkfajlk keycloak 2023-04-26 23:48:20 +00:00			`type = "postgresql";`
			`createLocally = true;`

			`username = "keycloak";`
			`passwordFile = "/run/keys/keycloakDbPw";`
continuing things 2023-04-26 21:25:04 +00:00			`};`
			`};`
afkjdlsjdlkfajlk keycloak 2023-04-26 23:48:20 +00:00			`deployment.keys."keycloakDbPw" = {`
			`keyCommand = [ "cat" "/home/jade/keys-tmp/keycloak-db" ];`
			`destDir = "/run/keys/";`
			`};`
continuing things 2023-04-26 21:25:04 +00:00			`}`