fix(authelia): add missing OIDC HMAC secret

2023-12-09 04:32:59 +01:00 · 2023-12-09 04:32:59 +01:00 · f76d5a42d7
commit f76d5a42d7
parent 9676f0ada2
5 changed files with 35 additions and 15 deletions
--- a/services/authelia.nix
+++ b/services/authelia.nix
@ -20,8 +20,12 @@ in {
    file = ../secrets/authelia/storage.age;
    owner = cfg.user;
  };
-  age.secrets.authelia-oidc = {
-    file = ../secrets/authelia/oidc.age;
+  age.secrets.authelia-oidc-hmac = {
+    file = ../secrets/authelia/oidc-hmac.age;
+    owner = cfg.user;
+  };
+  age.secrets.authelia-oidc-issuer = {
+    file = ../secrets/authelia/oidc-issuer.age;
    owner = cfg.user;
  };

@ -36,7 +40,8 @@ in {
      jwtSecretFile = config.age.secrets.authelia-jwt.path;
      storageEncryptionKeyFile = config.age.secrets.authelia-storage.path;
      sessionSecretFile = config.age.secrets.authelia-session.path;
-      oidcIssuerPrivateKeyFile = config.age.secrets.authelia-oidc.path;
+      oidcHmacSecretFile = config.age.secrets.authelia-oidc-hmac.path;
+      oidcIssuerPrivateKeyFile = config.age.secrets.authelia-oidc-issuer.path;
    };
    environmentVariables = {
      AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD_FILE =