gensokyo-zone/infrastructure
1
0
Fork 0
mirror of https://github.com/gensokyo-zone/infrastructure.git synced 2026-02-09 12:29:19 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix(access): cockpit

Browse source
This commit is contained in:
arcnmx 2024-05-13 11:51:43 -07:00
parent ac9441da3d
commit 2b15694fb8
1 changed files with 21 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

25
nixos/access/freeipa.nix
View file

@ -37,6 +37,20 @@ let
};
};
};
locations'cockpit = {
"/" = {xvars, ...}: {
proxy = {
enable = true;
host = xvars.get.host;
};
};
"/cockpit/socket" = {
proxy = {
enable = true;
websocket.enable = true;
};
};
};
ldapsPort = 636;
in {
imports = let
@ -239,18 +253,21 @@ in {
name = name'cockpit;
vouch.enable = mkDefault true;
ssl = {
force = mkDefault virtualHosts.freeipa'web.ssl.force;
force = mkDefault true;
cert.copyFromVhost = "freeipa'web";
};
proxy.upstream = "freeipa'cockpit";
locations."/".proxy.enable = true;
locations = locations'cockpit;
};
freeipa'cockpit'local = {
name = name'cockpit;
ssl.cert.copyFromVhost = "freeipa'cockpit";
ssl = {
force = mkDefault true;
cert.copyFromVhost = "freeipa'cockpit";
};
proxy.copyFromVhost = "freeipa'cockpit";
local.enable = true;
locations."/".proxy.enable = true;
locations = locations'cockpit;
};
freeipa'ldap = {
serverName = mkDefault ldap.domain;