ringofstorms/dotfiles
ringofstorms/dotfiles
1
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

idk

Browse source
This commit is contained in:
RingOfStorms (Joshua Bell) 2025-10-05 17:01:50 -05:00
parent 751e584775
commit aa0d2d3bc3
1 changed files with 5 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

12
hosts/h001/mods/oauth2-proxy.nix
View file

@ -1,9 +1,9 @@
{ config, ... }: { upkgs, config, ... }:
{ {
services.oauth2-proxy = { services.oauth2-proxy = {
enable = true; enable = true;
httpAddress = "http://127.0.0.1:4180"; httpAddress = "http://127.0.0.1:4180";
# package = pkgsUnstable.oauth2-proxy; package = upkgs.oauth2-proxy;
provider = "oidc"; provider = "oidc";
reverseProxy = true; reverseProxy = true;
redirectURL = "https://sso-proxy.joshuabell.xyz/oauth2/callback"; redirectURL = "https://sso-proxy.joshuabell.xyz/oauth2/callback";
@ -13,9 +13,11 @@
nginx.domain = "sso-proxy.joshuabell.xyz"; nginx.domain = "sso-proxy.joshuabell.xyz";
email.domains = [ "*" ]; email.domains = [ "*" ];
extraConfig = { extraConfig = {
whitelist-domain = ".joshuabell.xyz"; whitelist-domain = "*.joshuabell.xyz";
cookie-domain = ".joshuabell.xyz"; cookie-domain = ".joshuabell.xyz";
}; };
cookie.refresh = "30m";
setXauthrequest = true;
}; };
services.nginx.virtualHosts."sso-proxy.joshuabell.xyz" = { services.nginx.virtualHosts."sso-proxy.joshuabell.xyz" = {
@ -24,11 +26,7 @@
proxyWebsockets = true; proxyWebsockets = true;
recommendedProxySettings = true; recommendedProxySettings = true;
proxyPass = "http://127.0.0.1:4180"; proxyPass = "http://127.0.0.1:4180";
extraConfig = ''
proxy_set_header X-Forwarded-Proto https;
'';
}; };
}; };
}; };
} }