45 lines
757 B
Nix
45 lines
757 B
Nix
{
|
|
config,
|
|
lib,
|
|
pkgs,
|
|
modulesPath,
|
|
...
|
|
}:
|
|
{
|
|
sops = {
|
|
defaultSopsFile = ./secrets.sops.yml;
|
|
secrets = {
|
|
"auth/env-file".owner = "authentik";
|
|
"auth/ldap-env-file".owner = "authentik";
|
|
};
|
|
};
|
|
imports = [
|
|
"${modulesPath}/virtualisation/proxmox-lxc.nix"
|
|
./authentik.nix
|
|
];
|
|
|
|
networking = {
|
|
hostName = "auth";
|
|
domain = lib.mkForce "test.htw.stura-dresden.de";
|
|
useDHCP = false;
|
|
interfaces.eth0.ipv4.addresses = [
|
|
{
|
|
address = "141.56.51.96";
|
|
prefixLength = 24;
|
|
}
|
|
];
|
|
|
|
defaultGateway = {
|
|
address = "141.56.51.254";
|
|
interface = "eth0";
|
|
};
|
|
|
|
firewall.allowedTCPPorts = [
|
|
80
|
|
443
|
|
3389
|
|
];
|
|
};
|
|
|
|
system.stateVersion = "25.05";
|
|
}
|