harald/nixcfg
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

chore(nix): add OIDC configuration to Headscale

Browse source 
- Introduced OIDC settings in Headscale, including allowed domains, client ID, client secret path, and issuer.
- Enables support for OpenID Connect authentication.
This commit is contained in:
Harald Hoyer 2025-11-24 11:22:21 +01:00
parent ef4ac5e228
commit 8d6db08029
1 changed files with 6 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

6
systems/x86_64-linux/mx/headscale.nix
View file

@ -13,6 +13,12 @@ in
dns = {
base_domain = "hoyer.tail";
};
oidc = {
allowed_domains = [ "hoyer.xyz" ];
client_id = "UgQYtXftYvB9ua4cuyZ9NBvaknQfN76pPnf50pDhqghdb87g9tFcuSMiTLVje3R7";
client_secret_path = "/var/lib/headscale/client_secret";
issuer = "https://nc.hoyer.xyz";
};
};
};