From b9a216ad597f656d997371d97c00f3433b53a151 Mon Sep 17 00:00:00 2001 From: Jonas Gaffke Date: Mon, 5 Feb 2024 22:01:11 +0100 Subject: [PATCH] decisions: add dex openid connect client --- modules/decisions.nix | 5 +++++ secrets/quitte.yaml | 6 +++--- 2 files changed, 8 insertions(+), 3 deletions(-) diff --git a/modules/decisions.nix b/modules/decisions.nix index 32fc309..04c4e6e 100644 --- a/modules/decisions.nix +++ b/modules/decisions.nix @@ -31,6 +31,11 @@ in }; }; + services.portunus.dex.oidcClients = [{ + id = "decisions"; + callbackURL = "https://decisions.ifsr.de/auth"; + }]; + systemd.timers."decisions-to-db" = { wantedBy = [ "timers.target" ]; timerConfig = { diff --git a/secrets/quitte.yaml b/secrets/quitte.yaml index f9e6e55..570bde9 100644 --- a/secrets/quitte.yaml +++ b/secrets/quitte.yaml @@ -2,7 +2,7 @@ nextcloud_adminpass: ENC[AES256_GCM,data:v6FYsO/RklPSz5uf6aYQDhdudHb0962I1WxJM3V hedgedoc_session_secret: ENC[AES256_GCM,data:WFbqr6VX12rpiPuIPlQnwOMdHM1B0yk2PYuuanbqREE=,iv:Iih4/GNs9qN+AM6fdaTJLmmPQIzxIwXHUZttP1Up6qs=,tag:IVZQId4yxbePVQqJB9+3iw==,type:str] wg-fsr: ENC[AES256_GCM,data:U/71p+wJvYebUMwl1hEx6L/ZPMuwk03o6pf5QyxV6zDZfAZP2keqJb2j7kQ=,iv:xcYWNxEdR5vMGUYlcbzMcIdSjfynOfFJrR6tUhGpZxA=,tag:FCrW2DkmigK9vuqFW4hkzQ==,type:str] dex: - environment: ENC[AES256_GCM,data:sY5FlPgah/ouf3PXjinyQSiwTEisUFl8Pa9kdZUcOroQj6wMkxIbKqfMmDuddZzLyfTBFnXsR8byoo3u1R0yvu52yTGt0gc4IBT5gE9XqsdcM7UjKFVBBelbEPAZW0sln1EqGw2DgK9nWFW3Bcaut17QOovW+z7nQU9ySPYotQ77NZF4dKz48yl4UMZM5QJOYvStQ5/JDqfcLNfHKDehzGnyC8lx0Z8HQrRrt6vjkl0dD7AWNbb3jeuFT9ecbKETFtONolQm9vHwxMn4iIV+54UJs3Z6I4UZhV4aTf5AYoZTSrmSH/YiYcThOZG5zpPu0gcwfXE/U103IpsgaGEqgXPtMn+JjbW6wN2uQqVAl7kToXc8KH2usA/7hTxaC5mI+7hnOd31o9qiS0i8dAyXV6ixt+5XUmP8bjUUU/MHhBwDQhLJ/6LgZw3nCb4=,iv:hLk7oEro/NgbB4oj/hp9o17gmq6aH5cUqveo5zis5Ok=,tag:wUuaOTTmwZTvc7cizhoDxQ==,type:str] + environment: ENC[AES256_GCM,data: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,iv:eNV9sEWR0LKZVHFLYbRXiI+akZfOW1+QeELSlrLimGs=,tag:mCXklQnx0EraHQSCYyl8Wg==,type:str] portunus: admin-password: ENC[AES256_GCM,data:fESE6vrKhtslQO6ZJGv0T9t+leOSrgkY291orkwY+HPnOh26g2PSMX3j,iv:qmbCmjg0WsbOzfv6LsKcY3S1ssVXmaRB3lE6ZWzKSww=,tag:t8cP8XRTtto3EnNLEdz0yw==,type:str] search-password: ENC[AES256_GCM,data:xtbWS98IkQbnBu67sN413VNHZLg6eedbStE2uZ2pljS30uoM3coO2d32,iv:lKMTNnQJJfjAG7aX+G0eNnL36Cxmn+cWMRAlTovMJ4Y=,tag:FQGRBqsmY2c9VVIdBvGwCw==,type:str] @@ -45,8 +45,8 @@ sops: cGxpRS9BL0tkay9LalQ0bjFxbHhra0kKIS8TzQwbsI24D7vpbtthm2ZFj9SHJEeH DxeqddD4RH/6a5h0WamKo/CTdx+QME6fILs/a3cM1IVxL2z0Ef9KmQ== -----END AGE ENCRYPTED FILE----- - lastmodified: "2024-02-03T19:15:47Z" - mac: ENC[AES256_GCM,data:ASGVxdUpRJbJPQnv/tKBp/gk+NeCEItdrZMmPRUffJBr3OMO9GHIYNUnfiWyQ7P7fHv28iVz8X2ZAQioOMGsZKlzmSGiaCoHOf+v5XlwPDX5aPOwHsI73ylMGuJ+17aAQmgKh/jidF+EaFL0YjMhwTpJ6s3Mlt5+Ej3IA7nSJgs=,iv:11zZ7DaBkEBoyAtOpquPtS0+8DA4XlXFUa1rkTSicyM=,tag:GXanIiXKse808MEAOU57VA==,type:str] + lastmodified: "2024-02-05T20:57:13Z" + mac: ENC[AES256_GCM,data:Cp55SIw8m/GxLJBHe+32gv7uZKTp4E1s23GQGttXN9o5n3XlsEQtyE2HSQxQbQzAjh8jOT0wohyOUVqWplVoreTt5tNqmBqgBJyA/lZs/KFAM3J17r4hBi94w5E+eCeOoZPNlJro7xAoQvF4XnyFmwN+SLVqoTwSUZnr+SVF7RI=,iv:rrHE1wU10u/0n5LwwaMEm2oRsQ5oBUgIDTtdPXNyMSM=,tag:3fKzTuJT4GQMCZLX7D9Vsg==,type:str] pgp: - created_at: "2023-12-26T17:16:46Z" enc: |-