feat: per-bss settings in hostapd module, prepare vaultwarden for later

2025-10-11 07:10:39 +02:00 · 2023-04-02 17:33:04 +02:00 · 2023-04-02 17:33:04 +02:00 · 5d095392cf
commit 5d095392cf
parent 66bea99eb6
8 changed files with 900 additions and 611 deletions
--- a/hosts/ward/default.nix
+++ b/hosts/ward/default.nix
@ -22,9 +22,66 @@

  boot.initrd.availableKernelModules = ["xhci_pci" "ahci" "nvme" "usbhid" "usb_storage" "sd_mod" "sdhci_pci"];

-  microvm.vms.agag = {
-    flake = self;
-    updateFlake = microvm;
-  };
-  autostart = ["guest"];
+  #services.authelia.instances.main = {
+  #  enable = true;
+  #  settings = {
+  #    theme = "dark";
+  #    log = {
+  #      level = "info";
+  #      format = "text";
+  #    };
+  #    server = {
+  #      host = "127.0.0.1";
+  #      port = 9091;
+  #    };
+  #    session = {
+  #      name = "session";
+  #      domain = "pas.sh";
+  #    };
+  #    authentication_backend.ldap = {
+  #      implementation = "custom";
+  #      url = "ldap://127.0.0.1:3890";
+  #      base_dn = "dc=pas,dc=sh";
+  #      username_attribute = "uid";
+  #      additional_users_dn = "ou=people";
+  #      users_filter = "(&({username_attribute}={input})(objectclass=person))";
+  #      additional_groups_dn = "ou=groups";
+  #      groups_filter = "(member={dn})";
+  #      group_name_attribute = "cn";
+  #      mail_attribute = "mail";
+  #      display_name_attribute = "uid";
+  #      user = "uid=authelia,ou=people,dc=pas,dc=sh";
+  #    };
+  #    storage.local = {
+  #      path = "/var/lib/authelia-${cfg.name}/db.sqlite3";
+  #    };
+  #    access_control = {
+  #      default_policy = "deny";
+  #    };
+  #    notifier.smtp = rec {
+  #      host = "smtp.fastmail.com";
+  #      port = 587;
+  #      username = "a@example.com";
+  #      sender = "noreply@example.com";
+  #      startup_check_address = sender;
+  #      disable_html_emails = true;
+  #    };
+  #    identity_providers.oidc = {
+  #      cors.allowed_origins_from_client_redirect_uris = true;
+  #      cors.endpoints = [
+  #        "authorization"
+  #          "introspection"
+  #          "revocation"
+  #          "token"
+  #          "userinfo"
+  #      ];
+  #    };
+  #  };
+  #};
+
+  #microvm.vms.agag = {
+  #  flake = self;
+  #  updateFlake = microvm;
+  #};
+  #microvm.autostart = ["guest"];
 }