jordan/nix-config
1
1
Fork 0
Code Issues 10 Pull Requests Actions Projects 3 Wiki Activity

kanidm: bind LDAP to VPN
All checks were successful
Check flake / build-amd64-linux (push) Successful in 4m21s
Details

Browse Source
This commit is contained in:
Jordan Holt
2025-02-13 15:01:04 +00:00
parent f37dfc003f
commit 01c9d1b488
2 changed files with 6 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
hosts/library/default.nix
View File

@ -16,6 +16,9 @@
networking = { networking = {
hostId = "d24ae953"; hostId = "d24ae953";
hosts = {
"100.64.0.1" = [ "auth.vimium.com" ];
};
firewall = { firewall = {
enable = true; enable = true;
allowedTCPPorts = [ allowedTCPPorts = [

6
hosts/vps1/default.nix
View File

@ -69,8 +69,8 @@
inherit uri; inherit uri;
}; };
serverSettings = { serverSettings = {
bindaddress = "[::1]:3013"; bindaddress = "127.0.0.1:3013";
ldapbindaddress = "[::1]:636"; ldapbindaddress = "100.64.0.1:636";
domain = baseDomain; domain = baseDomain;
origin = uri; origin = uri;
tls_chain = "${config.security.acme.certs.${domain}.directory}/full.pem"; tls_chain = "${config.security.acme.certs.${domain}.directory}/full.pem";
@ -83,7 +83,7 @@
useACMEHost = "auth.vimium.com"; useACMEHost = "auth.vimium.com";
forceSSL = true; forceSSL = true;
locations."/" = { locations."/" = {
proxyPass = "https://[::1]:3013"; proxyPass = "https://127.0.0.1:3013";
}; };
}; };
}; };