mastodon: move ldap to nixos-modules
This commit is contained in:
parent
8f664240ed
commit
0000000f1d
|
@ -421,11 +421,11 @@
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
"locked": {
|
"locked": {
|
||||||
"lastModified": 1683057005,
|
"lastModified": 1683241081,
|
||||||
"narHash": "sha256-e3uDaI4u1w6/7YxU/U5sV2Oayapu5AEMFUeiQFF/LHI=",
|
"narHash": "sha256-eTz73pjTKEgzFfG6V7oA2LK1Wfv2ZFoSe7vUNphrPAc=",
|
||||||
"owner": "SuperSandro2000",
|
"owner": "SuperSandro2000",
|
||||||
"repo": "nixos-modules",
|
"repo": "nixos-modules",
|
||||||
"rev": "e220c41ceed6b3a21352865779c4f3df354a525e",
|
"rev": "d06e5fde7fdc1847322e9b30f83a32c380eb2f20",
|
||||||
"type": "github"
|
"type": "github"
|
||||||
},
|
},
|
||||||
"original": {
|
"original": {
|
||||||
|
|
|
@ -110,23 +110,12 @@
|
||||||
enable = true;
|
enable = true;
|
||||||
configureNginx = true;
|
configureNginx = true;
|
||||||
elasticsearch.host = "127.0.0.1";
|
elasticsearch.host = "127.0.0.1";
|
||||||
|
ldap.enable = true;
|
||||||
extraConfig = {
|
extraConfig = {
|
||||||
ALTERNATE_DOMAINS = lib.concatStringsSep "," config.services.nginx.virtualHosts.${config.services.mastodon.localDomain}.serverAliases;
|
ALTERNATE_DOMAINS = lib.concatStringsSep "," config.services.nginx.virtualHosts.${config.services.mastodon.localDomain}.serverAliases;
|
||||||
DEFAULT_LOCALE = "de";
|
DEFAULT_LOCALE = "de";
|
||||||
WEB_CONCURRENCY = toString config.microvm.vcpu;
|
WEB_CONCURRENCY = toString config.microvm.vcpu;
|
||||||
# MAX_THREADS = toString config.microvm.vcpu;
|
# MAX_THREADS = toString config.microvm.vcpu;
|
||||||
LOG_LEVEL = "debug";
|
|
||||||
|
|
||||||
LDAP_ENABLED = "true";
|
|
||||||
LDAP_METHOD = "simple_tls";
|
|
||||||
LDAP_HOST = "auth.c3d2.de";
|
|
||||||
LDAP_PORT = "636";
|
|
||||||
LDAP_BIND_DN = "uid=search,ou=users,dc=c3d2,dc=de";
|
|
||||||
LDAP_BASE = "ou=users,dc=c3d2,dc=de";
|
|
||||||
LDAP_SEARCH_FILTER = "(&(objectclass=person)(|(%{uid}=%{email})(%{mail}=%{email})))";
|
|
||||||
LDAP_UID = "uid";
|
|
||||||
# convert .,- (space) in LDAP usernames to underscore
|
|
||||||
LDAP_UID_CONVERSION_ENABLED = "true";
|
|
||||||
};
|
};
|
||||||
localDomain = "c3d2.social";
|
localDomain = "c3d2.social";
|
||||||
otpSecretFile = config.sops.secrets."mastodon/otp-secret".path;
|
otpSecretFile = config.sops.secrets."mastodon/otp-secret".path;
|
||||||
|
|
Loading…
Reference in New Issue