histausse/nixos-modules
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

fix openid config for gitea

Browse source
This commit is contained in:
Histausse 2023-04-26 22:08:43 +02:00
parent 251e32c76e
commit a06c45caa1
1 changed files with 8 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
pp-gitea.nix
View file

@ -44,9 +44,12 @@ in
services.gitea.enable = true;
services.gitea.rootUrl = "https://${cfg.domain}/";
services.gitea.settings.session.COOKIE_SECURE = lib.mkForce true; # Why do I need to override this???
# If true, openid users cannot create new account
#services.gitea.settings.service.DISABLE_REGISTRATION = lib.mkForce (!cfg.openIdEnable);
#services.gitea.settings.service.ALLOW_ONLY_EXTERNAL_REGISTRATION = cfg.openIdEnable;
#services.gitea.settings."openid".ENABLE_OPENID_SIGNUP = cfg.openIdEnable;
services.gitea.settings.service.DISABLE_REGISTRATION = lib.mkForce false;
services.gitea.settings.service.ALLOW_ONLY_EXTERNAL_REGISTRATION = cfg.openIdEnable;
services.gitea.lfs.enable = true;
services.gitea.domain = cfg.domain;
# services.gitea.database.type = "postgres"; # Default is sqlite3, probably better for a small instance
@ -99,9 +102,9 @@ in
proxy_pass_request_headers on;
'';
};
# locations."/user/login" = lib.mkIf (cfg.openIdEnable) {
# globalRedirect = "$host/${cfg.openIdClientName}";
# };
locations."/user/login" = lib.mkIf (cfg.openIdEnable) {
return = "301 https://$host/user/oauth2/${cfg.openIdClientName}";
};
};
};
};