From 5c354c8ec8c7194937ab0cbeb25732b7133d4586 Mon Sep 17 00:00:00 2001
From: oddlama <oddlama@oddlama.org>
Date: Wed, 15 May 2024 23:48:29 +0200
Subject: [PATCH] chore: remove oauth2 from influx and only allow internal
 peers

---
 hosts/sire/guests/influxdb.nix | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/hosts/sire/guests/influxdb.nix b/hosts/sire/guests/influxdb.nix
index 360dc6f..cc68e6e 100644
--- a/hosts/sire/guests/influxdb.nix
+++ b/hosts/sire/guests/influxdb.nix
@@ -27,15 +27,12 @@ in {
       };
       virtualHosts.${influxdbDomain} = let
         accessRules = ''
-          satisfy any;
           ${lib.concatMapStrings (ip: "allow ${ip};\n") sentinelCfg.wireguard.proxy-sentinel.server.reservedAddresses}
           deny all;
         '';
       in {
         forceSSL = true;
         useACMEWildcardHost = true;
-        oauth2.enable = true;
-        oauth2.allowedGroups = ["access_influxdb"];
         locations."/" = {
           proxyPass = "http://influxdb";
           proxyWebsockets = true;