Gitiles
Code Review Sign In
git.clicks.codes / Infra / NixFiles / d550aab3d362dad27d8b000739cb7f694ca9fece / . / modules / keycloak.nix
blob: 30e078baee664757a5391a33ff3daf00bba8bfe5 [file] [log] [blame]
Skyler Grey0e05d262023-10-09 07:04:36 +0000[diff] [blame]1{ config, ... }: {
2 services.keycloak = {
3 enable = true;
4 settings = {
5 http-host = "127.0.0.1";
6 http-port = 9083;
7 https-port = 9084;
8 http-enabled = true;
9
10 proxy = "edge";
11
12 # https-port = 9084;
13 hostname = "login.clicks.codes";
14 hostname-strict = false;
15
16 https-certificate-file = "/var/keycloak/login.clicks.codes.rsa.cert.pem";
Skyler Greyfe1740c2023-10-21 01:24:18 +0000[diff] [blame]17 https-certificate-key-file =
18 "/var/keycloak/login.clicks.codes.rsa.private.pem";
Skyler Grey0e05d262023-10-09 07:04:36 +0000[diff] [blame]19 };
20 database = {
21 createLocally = false;
22 port = config.services.postgresql.port;
23 passwordFile = config.sops.secrets.clicks_keycloak_db_password.path;
24 };
25 };
26}