auth machine

2025-07-16 02:10:31 +02:00 · 2025-07-16 02:10:31 +02:00 · 851a9e18db
commit 851a9e18db
parent 98dce86882
34 changed files with 2383 additions and 99 deletions
--- a/machines/auth/bootstrap/user-configs.nix
+++ b/machines/auth/bootstrap/user-configs.nix
@ -0,0 +1,28 @@
+{config, ...}: {
+  sops.secrets."service_accounts/authelia/password" = {};
+  sops.secrets."service_accounts/forgejo/password" = {};
+  sops.templates."service-accounts.json" = {
+    content = ''
+      {
+        "id": "authelia",
+        "email": "authelia@procopius.dk",
+        "password": "${config.sops.placeholder."service_accounts/authelia/password"}",
+        "displayName": "Authelia",
+        "groups": [
+          "lldap_password_manager"
+        ]
+      }
+      {
+        "id": "forgejo",
+        "email": "forgejo@procopius.dk",
+        "password": "${config.sops.placeholder."service_accounts/forgejo/password"}",
+        "displayName": "Forgejo",
+        "groups": [
+          "lldap_password_manager"
+        ]
+      }
+    '';
+    path = "/bootstrap/user-configs/service-accounts.json";
+    owner = "lldap";
+  };
+}