chore(3p/sources): Bump channels and overlays

Changes: * updated keycloak configuration for new version * migrate to emacs28 outside of //users, re-add emacs27 but with a warning attached urging people to migrate Change-Id: I3e5765a63934541f72f6c4a8673d3b4671850c93 Reviewed-on: https://cl.tvl.fyi/c/depot/+/5501 Tested-by: BuildkiteCI Autosubmit: tazjin <tazjin@tvl.su> Reviewed-by: wpcarro <wpcarro@gmail.com>
2022-04-21 16:36:04 +02:00 · 2022-04-21 16:36:04 +02:00 · c05c4995ab
commit c05c4995ab
parent 95cfd6630b
7 changed files with 27 additions and 30 deletions
--- a/ops/machines/whitby/default.nix
+++ b/ops/machines/whitby/default.nix
@ -604,25 +604,18 @@ in
  services.keycloak = {
    enable = true;
    httpPort = "5925"; # "kycl"
-    frontendUrl = "https://auth.tvl.fyi/auth/";
+
+    settings = {
+      hostname = "auth.tvl.fyi";
+      http-relative-path = "/auth";
+      proxy = "edge";
+    };

    database = {
      type = "postgresql";
      passwordFile = "/run/agenix/keycloak-db";
      createLocally = false;
    };
-
-    # Configure Keycloak to look at forwarded headers from the reverse
-    # proxy.
-    extraConfig = {
-      "subsystem=undertow" = {
-        "server=default-server" = {
-          "http-listener=default" = {
-            proxy-address-forwarding = "true";
-          };
-        };
-      };
-    };
  };

  # Allow Keycloak access to the LDAP module by forcing in the JVM