chore(idp): ldap ssl proxy

2026-02-09 12:29:19 -08:00 · 2024-03-13 15:36:12 -07:00 · 2024-03-13 15:36:12 -07:00 · 926290306a
commit 926290306a
parent e7ed4ee5ac
4 changed files with 137 additions and 70 deletions
--- a/nixos/k8s.nix
+++ b/nixos/k8s.nix
@ -4,10 +4,11 @@
  lib,
  ...
 }: let
+  inherit (inputs.self.lib.lib) domain;
  inherit (lib.modules) mkForce;
  inherit (lib.strings) escapeShellArgs;
  kubeMasterIP = "10.1.1.173";
-  kubeMasterHostname = "k8s.gensokyo.zone";
+  kubeMasterHostname = "k8s.${domain}";
  kubeMasterAPIServerPort = 6443;
 in {
  # packages for administration tasks
@ -42,7 +43,7 @@ in {
      extraOpts = escapeShellArgs [
        "--service-node-port-range=1-65535"
        /*
-          "--oidc-issuer-url=https://dex.gensokyo.zone:32000"
+          "--oidc-issuer-url=https://dex.${domain}:32000"
        "--oidc-client-id=kuwubernetes"
        "--oidc-ca-file=/etc/dex-ssl/ca.pem"
        "--oidc-username-claim=email"