···
2
-
virtualisation.oci-containers.containers = let
3
-
authentikVersion = "2023.2";
6
-
image = "postgres:12-alpine";
8
-
"/var/lib/authentik/db:/var/lib/postgresql/data"
10
-
environmentFiles = [config.age.secrets.authentik-env.path];
12
-
POSTGRES_PASSWORD = "\${PG_PASS}";
13
-
POSTGRES_USER = "authentik";
14
-
POSTGRES_DB = "authentik";
2
+
virtualisation.oci-containers.containers =
4
+
authentikVersion = "2023.3";
8
+
image = "postgres:12-alpine";
10
+
"/var/lib/authentik/db:/var/lib/postgresql/data"
12
+
environmentFiles = [ config.age.secrets.authentik-env.path ];
14
+
POSTGRES_PASSWORD = "\${PG_PASS}";
15
+
POSTGRES_USER = "authentik";
16
+
POSTGRES_DB = "authentik";
18
+
extraOptions = [ "--network=authentik" ];
16
-
extraOptions = ["--network=authentik"];
19
-
image = "redis:alpine";
20
-
extraOptions = ["--network=authentik"];
22
-
authentik-server = {
23
-
image = "ghcr.io/goauthentik/server:${authentikVersion}";
25
-
environmentFiles = [config.age.secrets.authentik-env.path];
27
-
AUTHENTIK_REDIS__HOST = "authentik-redis";
21
+
image = "redis:alpine";
22
+
extraOptions = [ "--network=authentik" ];
24
+
authentik-server = {
25
+
image = "ghcr.io/goauthentik/server:${authentikVersion}";
27
+
environmentFiles = [ config.age.secrets.authentik-env.path ];
29
+
AUTHENTIK_REDIS__HOST = "authentik-redis";
30
-
AUTHENTIK_POSTGRESQL__HOST = "authentik-db";
31
-
AUTHENTIK_POSTGRESQL__PORT = "5432";
32
-
AUTHENTIK_POSTGRESQL__USER = "authentik";
33
-
AUTHENTIK_POSTGRESQL__NAME = "authentik";
34
-
AUTHENTIK_POSTGRESQL__PASSWORD = "\${PG_PASS}";
32
+
AUTHENTIK_POSTGRESQL__HOST = "authentik-db";
33
+
AUTHENTIK_POSTGRESQL__PORT = "5432";
34
+
AUTHENTIK_POSTGRESQL__USER = "authentik";
35
+
AUTHENTIK_POSTGRESQL__NAME = "authentik";
36
+
AUTHENTIK_POSTGRESQL__PASSWORD = "\${PG_PASS}";
36
-
# Disable error reporting
37
-
AUTHENTIK_ERROR_REPORTING__ENABLED = "false";
38
+
# Disable error reporting
39
+
AUTHENTIK_ERROR_REPORTING__ENABLED = "false";
39
-
# Avatars are an attribute based on an uploaded file
40
-
AUTHENTIK_AVATARS = "attributes.user.avatar";
41
+
# Avatars are an attribute based on an uploaded file
42
+
AUTHENTIK_AVATARS = "attributes.user.avatar";
43
-
AUTHENTIK_EMAIL__HOST = "mail.pyrox.dev";
44
-
AUTHENTIK_EMAIL__USERNAME = "auth@pyrox.dev";
45
-
AUTHENTIK_EMAIL__PORT = "465";
46
-
AUTHENTIK_EMAIL__USE_TLS = "true";
47
-
AUTHENTIK_EMAIL__FROM = "PyroServ Auth <auth@pyrox.dev>";
45
+
AUTHENTIK_EMAIL__HOST = "mail.pyrox.dev";
46
+
AUTHENTIK_EMAIL__USERNAME = "auth@pyrox.dev";
47
+
AUTHENTIK_EMAIL__PORT = "465";
48
+
AUTHENTIK_EMAIL__USE_TLS = "true";
49
+
AUTHENTIK_EMAIL__FROM = "PyroServ Auth <auth@pyrox.dev>";
57
+
"/var/lib/authentik/media:/media"
58
+
"/var/lib/authentik/templates:/templates"
59
+
"/var/lib/authentik/custom.css:/web/dist/custom.css"
61
+
extraOptions = [ "--network=authentik" ];
55
-
"/var/lib/authentik/media:/media"
56
-
"/var/lib/authentik/templates:/templates"
57
-
"/var/lib/authentik/custom.css:/web/dist/custom.css"
59
-
extraOptions = ["--network=authentik"];
61
-
authentik-worker = {
62
-
image = "ghcr.io/goauthentik/server:${authentikVersion}";
64
-
environmentFiles = [config.age.secrets.authentik-env.path];
66
-
AUTHENTIK_REDIS__HOST = "authentik-redis";
63
+
authentik-worker = {
64
+
image = "ghcr.io/goauthentik/server:${authentikVersion}";
66
+
environmentFiles = [ config.age.secrets.authentik-env.path ];
68
+
AUTHENTIK_REDIS__HOST = "authentik-redis";
69
-
AUTHENTIK_POSTGRESQL__HOST = "authentik-db";
70
-
AUTHENTIK_POSTGRESQL__PORT = "5432";
71
-
AUTHENTIK_POSTGRESQL__USER = "authentik";
72
-
AUTHENTIK_POSTGRESQL__NAME = "authentik";
73
-
AUTHENTIK_POSTGRESQL__PASSWORD = "\${PG_PASS}";
71
+
AUTHENTIK_POSTGRESQL__HOST = "authentik-db";
72
+
AUTHENTIK_POSTGRESQL__PORT = "5432";
73
+
AUTHENTIK_POSTGRESQL__USER = "authentik";
74
+
AUTHENTIK_POSTGRESQL__NAME = "authentik";
75
+
AUTHENTIK_POSTGRESQL__PASSWORD = "\${PG_PASS}";
75
-
# Disable error reporting
76
-
AUTHENTIK_ERROR_REPORTING__ENABLED = "false";
77
+
# Disable error reporting
78
+
AUTHENTIK_ERROR_REPORTING__ENABLED = "false";
78
-
# Avatars are an attribute based on an uploaded file
79
-
AUTHENTIK_AVATARS = "attributes.user.avatar";
80
+
# Avatars are an attribute based on an uploaded file
81
+
AUTHENTIK_AVATARS = "attributes.user.avatar";
82
-
AUTHENTIK_EMAIL__HOST = "mail.pyrox.dev";
83
-
AUTHENTIK_EMAIL__USERNAME = "auth@pyrox.dev";
84
-
AUTHENTIK_EMAIL__PORT = "465";
85
-
AUTHENTIK_EMAIL__USE_TLS = "true";
86
-
AUTHENTIK_EMAIL__FROM = "PyroServ Auth <auth@pyrox.dev>";
84
+
AUTHENTIK_EMAIL__HOST = "mail.pyrox.dev";
85
+
AUTHENTIK_EMAIL__USERNAME = "auth@pyrox.dev";
86
+
AUTHENTIK_EMAIL__PORT = "465";
87
+
AUTHENTIK_EMAIL__USE_TLS = "true";
88
+
AUTHENTIK_EMAIL__FROM = "PyroServ Auth <auth@pyrox.dev>";
91
+
"/var/lib/authentik/media:/media"
92
+
"/var/lib/authentik/templates:/templates"
93
+
"/var/lib/authentik/certs:/certs"
95
+
extraOptions = [ "--network=authentik" ];
89
-
"/var/lib/authentik/media:/media"
90
-
"/var/lib/authentik/templates:/templates"
91
-
"/var/lib/authentik/certs:/certs"
93
-
extraOptions = ["--network=authentik"];
96
-
image = "ghcr.io/goauthentik/ldap:${authentikVersion}";
102
-
AUTHENTIK_HOST = "https://auth.pyrox.dev";
103
-
AUTHENTIK_INSECURE = "false";
98
+
image = "ghcr.io/goauthentik/ldap:${authentikVersion}";
104
+
AUTHENTIK_HOST = "https://auth.pyrox.dev";
105
+
AUTHENTIK_INSECURE = "false";
107
+
environmentFiles = [ config.age.secrets.authentik-env.path ];
108
+
extraOptions = [ "--network=authentik" ];
105
-
environmentFiles = [config.age.secrets.authentik-env.path];
106
-
extraOptions = ["--network=authentik"];
pyrox.dev