feat: expose glauth api to tailnet

configuration.nix

@@ -104,16 +104,10 @@
       debug = false;
       ldap = {
         enabled = true;
-        listen = "127.0.0.1:3890";
+        listen = "127.0.0.1:3893";
         tls = false;
       };
       ldaps.enabled = false;
-      # backend = {
-      #   datastore = "config";
-      #   baseDN = "dc=twins,dc=pearson";
-      #   nameFormat = "uid";
-      #   groupFormat = "ou";
-      # };
       backends = [
         {
           datastore = "config";
@@ -121,17 +115,18 @@
           nameFormat = "uid";
           groupFormat = "ou";
         }
-        {
-          datastore = "plugin";
-          plugin = "sqlite.so";
-          pluginhandler = "NewSqliteHandler";
-          database = "/run/glauth/glauth.db";
-        }
+        # TODO: package glauth sqlite plugin
+        # {
+        #   datastore = "plugin";
+        #   plugin = "sqlite.so";
+        #   pluginhandler = "NewSqliteHandler";
+        #   database = "/run/glauth/glauth.db";
+        # }
       ];
       api = {
         enabled = true;
         tls = false;
-        listen = "/run/glauth/api.sock:unix";
+        listen = "127.0.0.1:5555";
       };
       users = [
         { name = "forgejo_search";
@@ -349,6 +344,11 @@
       }
       file_server
     '';
+
+    virtualHosts."glauth.samsehu.perli.casa".extraConfig = ''
+      bind 100.64.0.3
+      reverse_proxy localhost:5555
+    '';
   };
 
   # Headscale for access to the network while away from home
@@ -374,6 +374,7 @@
           { name = "cockpit.samsehu.perli.casa"; type = "A"; value = "100.64.0.3"; }
           { name = "git.samsehu.perli.casa"; type = "A"; value = "100.64.0.3"; }
           { name = "nextcloud.samsehu.perli.casa"; type = "A"; value = "100.64.0.3"; }
+          { name = "glauth.samsehu.perli.casa"; type = "A"; value = "100.64.0.3"; }
         ];
       };