feat(authelia): configure oidc issuer private key

2023-12-09 03:38:11 +01:00 · 2023-12-09 03:38:11 +01:00 · fe85437544
commit fe85437544
parent f412f5e339
3 changed files with 87 additions and 0 deletions
--- a/services/authelia.nix
+++ b/services/authelia.nix
@ -20,6 +20,10 @@ in {
    file = ../secrets/authelia/storage.age;
    owner = cfg.user;
  };
+  age.secrets.authelia-oidc = {
+    file = ../secrets/authelia/oidc.age;
+    owner = cfg.user;
+  };

  services.authelia.instances.main = {
    enable = true;
@ -27,6 +31,7 @@ in {
      jwtSecretFile = config.age.secrets.authelia-jwt.path;
      storageEncryptionKeyFile = config.age.secrets.authelia-storage.path;
      sessionSecretFile = config.age.secrets.authelia-session.path;
+      oidcIssuerPrivateKeyFile = config.age.secrets.authelia-oidc.path;
    };
    environmentVariables = {
      AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD_FILE =