Klub-RZ/infrastructure
4
0
Fork 0
Code Issues 7 Pull requests Projects Releases Packages Wiki Activity

oauth2_proxy: add a cookie specific to *.rz.ens.wtf

Browse source
This commit is contained in:
Raito Bezarius 2022-08-05 16:34:22 +02:00
parent 6f5fdb0317
commit 9d3381cafb
1 changed files with 4 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
machines/core-services-01/monitoring.nix
View file

@ -117,6 +117,10 @@ in
keyFile = config.age.secrets.oauth2ProxyKeyFile.path;
provider = "keycloak";
email.domains = [ "*" ];
cookie = {
name = "_oauth2_proxy_ensrz";
domain = ".rz.ens.wtf";
};
setXauthrequest = true;
scope = "profile";
loginURL = "https://auth.${my.subZone}/auth/realms/${realm}/protocol/openid-connect/auth";