gensokyo-zone/infrastructure
1
0
Fork 0
mirror of https://github.com/gensokyo-zone/infrastructure.git synced 2026-02-09 12:29:19 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix: keycloak config and jdk version

Browse source
This commit is contained in:
Kat Inskip 2022-07-17 18:14:51 -07:00
parent 2cf0261a55
commit f09844b4d5
Signed by: kat
GPG key ID: 465E64DECEA8CF0F
1 changed files with 3 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

5
services/keycloak.nix
View file

@ -4,7 +4,7 @@ in {
services.keycloak = { services.keycloak = {
enable = builtins.getEnv "CI_PLATFORM" == "impure"; enable = builtins.getEnv "CI_PLATFORM" == "impure";
package = (pkgs.keycloak.override { package = (pkgs.keycloak.override {
jre = pkgs.openjdk11; jre = pkgs.openjdk17;
}); });
initialAdminPassword = "mewpymewlymewlies"; initialAdminPassword = "mewpymewlymewlies";
database.passwordFile = config.secrets.files.keycloak-postgres-file.path; database.passwordFile = config.secrets.files.keycloak-postgres-file.path;
@ -15,7 +15,8 @@ in {
https-port = 8445; https-port = 8445;
proxy = "edge"; proxy = "edge";
hostname = "auth.kittywit.ch"; hostname = "auth.kittywit.ch";
http-relative-path = "/auth"; hostname-strict = false;
http-relative-path = "/";
hostname-strict-backchannel = true; hostname-strict-backchannel = true;
https-key-store-file = "/var/lib/acme/domain-auth/trust-store.jks"; https-key-store-file = "/var/lib/acme/domain-auth/trust-store.jks";
https-key-store-password = keystore-pass; https-key-store-password = keystore-pass;