Blame - modules/keycloak.nix - Infra/NixFiles

blob: d196ac97d7d3a7c8dbdf293196af1a3b63f254fd [file] [log] [blame]

Skyler Grey	0e05d26	2023-10-09 07:04:36 +0000	[diff] [blame]	1	{ config, ... }: {
				2	services.keycloak = {
				3	enable = true;
				4	settings = {
				5	http-host = "127.0.0.1";
				6	http-port = 9083;
				7	https-port = 9084;
				8	http-enabled = true;
				9
				10	proxy = "edge";
				11
				12	# https-port = 9084;
				13	hostname = "login.clicks.codes";
				14	hostname-strict = false;
				15
				16	https-certificate-file = "/var/keycloak/login.clicks.codes.rsa.cert.pem";
				17	https-certificate-key-file = "/var/keycloak/login.clicks.codes.rsa.private.pem";
				18	};
				19	database = {
				20	createLocally = false;
				21	port = config.services.postgresql.port;
				22	passwordFile = config.sops.secrets.clicks_keycloak_db_password.path;
				23	};
				24	};
				25	}