gensokyo-zone/infrastructure
1
0
Fork 0
mirror of https://github.com/gensokyo-zone/infrastructure.git synced 2026-02-09 20:39:18 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions
infrastructure/modules/system/exports/keycloak.nix
arcnmx 23b746191f feat(monitoring): more status endpoints
2024-06-01 11:25:08 -07:00

45 lines
1.2 KiB
Nix
Raw Blame History

{
lib,
gensokyo-zone,
...
}: let
inherit (gensokyo-zone.lib) mkAlmostOptionDefault;
inherit (lib.modules) mkIf;
in {
config.exports.services.keycloak = {config, ...}: {
displayName = mkAlmostOptionDefault "Keycloak";
id = mkAlmostOptionDefault "sso";
nixos = {
serviceAttr = "keycloak";
assertions = let
mkAssertion = f: nixosConfig: let
cfg = nixosConfig.services.keycloak;
in
f nixosConfig cfg;
in
mkIf config.enable [
(mkAssertion (nixosConfig: cfg: {
assertion = config.ports.${cfg.protocol}.port == cfg.port;
message = "port mismatch";
}))
(mkAssertion (nixosConfig: cfg: {
assertion = config.ports.${cfg.protocol}.enable;
message = "port enable mismatch";
}))
];
};
ports = {
http = {
enable = mkAlmostOptionDefault (!config.ports.https.enable);
port = mkAlmostOptionDefault 8080;
protocol = "http";
status.enable = mkAlmostOptionDefault true;
};
https = {
port = mkAlmostOptionDefault 8443;
protocol = "https";
status.enable = mkAlmostOptionDefault config.ports.http.status.enable;
};
};
};
}
Reference in a new issue View git blame Copy permalink