From daa8de96bb3e5892300cd164a829eb9b7ac9c792 Mon Sep 17 00:00:00 2001 From: Louis Pearson Date: Sun, 7 Jan 2024 14:08:19 -0700 Subject: [PATCH] feat: expose glauth api to tailnet --- configuration.nix | 29 +++++++++++++++-------------- 1 file changed, 15 insertions(+), 14 deletions(-) diff --git a/configuration.nix b/configuration.nix index 7594262..071334a 100644 --- a/configuration.nix +++ b/configuration.nix @@ -104,16 +104,10 @@ debug = false; ldap = { enabled = true; - listen = "127.0.0.1:3890"; + listen = "127.0.0.1:3893"; tls = false; }; ldaps.enabled = false; - # backend = { - # datastore = "config"; - # baseDN = "dc=twins,dc=pearson"; - # nameFormat = "uid"; - # groupFormat = "ou"; - # }; backends = [ { datastore = "config"; @@ -121,17 +115,18 @@ nameFormat = "uid"; groupFormat = "ou"; } - { - datastore = "plugin"; - plugin = "sqlite.so"; - pluginhandler = "NewSqliteHandler"; - database = "/run/glauth/glauth.db"; - } + # TODO: package glauth sqlite plugin + # { + # datastore = "plugin"; + # plugin = "sqlite.so"; + # pluginhandler = "NewSqliteHandler"; + # database = "/run/glauth/glauth.db"; + # } ]; api = { enabled = true; tls = false; - listen = "/run/glauth/api.sock:unix"; + listen = "127.0.0.1:5555"; }; users = [ { name = "forgejo_search"; @@ -349,6 +344,11 @@ } file_server ''; + + virtualHosts."glauth.samsehu.perli.casa".extraConfig = '' + bind 100.64.0.3 + reverse_proxy localhost:5555 + ''; }; # Headscale for access to the network while away from home @@ -374,6 +374,7 @@ { name = "cockpit.samsehu.perli.casa"; type = "A"; value = "100.64.0.3"; } { name = "git.samsehu.perli.casa"; type = "A"; value = "100.64.0.3"; } { name = "nextcloud.samsehu.perli.casa"; type = "A"; value = "100.64.0.3"; } + { name = "glauth.samsehu.perli.casa"; type = "A"; value = "100.64.0.3"; } ]; };