wurzel/fruitbasket
9
1
Fork 0
Code Issues 5 Pull requests Packages Projects Releases Wiki Activity

[Draft] Basic LDAP/Portunus config #12

Merged
hxlcyxn merged 16 commits from ldap into main 2022-12-17 20:54:56 +01:00
Conversation 0 Commits 16 Files changed 5 +3 -10
1 changed files with 3 additions and 10 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files
Showing only changes of commit 2f8d5b8949 - Show all commits

13
modules/ldap.nix
View file

@ -1,9 +1,9 @@
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
{ config, ... }:
let
# temporary url, zum testen auf laptop zuhause
tld = "moe";
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
hostname = "eisvogel";
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
domain = "portunus.${hostname}.${tld}";
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
tld = "de";
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
hostname = "ifsr";
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
domain = "auth.staging.${hostname}.${tld}";
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
portunusUser = "portunus";
portunusGroup = "portunus";
@ -53,13 +53,6 @@ in
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
seedPath = "../config/portunus_seeds.json";
};
users.ldap = {
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
enable = true;
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
server = "ldaps://${domain}";
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
base = "dc=${hostname},dc=${tld}";
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
# useTLS = true; # nicht nötig weil ldaps domain festgelegt. würde sonst starttls auf port 389 versuchen
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
};
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
services.nginx = {
enable = true;
virtualHosts."${config.services.portunus.domain}" = {

tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path
tanneberger commented 2022-12-17 19:41:28 +01:00 (Migrated from github.com)
Review
Copy link

potential security risk

potential security risk
tanneberger commented 2022-12-17 19:41:48 +01:00 (Migrated from github.com)
Review
Copy link

should be nix path

should be nix path