change authelia user

2023-08-17 02:03:09 +02:00
parent 12f0c9bb1e
commit 1055714683
1 changed files with 11 additions and 10 deletions
--- a/utils/modules/authelia/default.nix
+++ b/utils/modules/authelia/default.nix
@@ -2,24 +2,25 @@

 {
  sops.secrets.authelia-jwt-secret = {
-    owner = "authelia-main";
+    owner = "authelia_main";
    sopsFile = ./secrets.yaml;
  };
  sops.secrets.authelia-backend-ldap-password = {
-    owner = "authelia-main";
+    owner = "authelia_main";
    sopsFile = ./secrets.yaml;
  };
  sops.secrets.authelia-storage-encryption-key = {
-    owner = "authelia-main";
+    owner = "authelia_main";
    sopsFile = ./secrets.yaml;
  };
  sops.secrets.authelia-session-secret = {
-    owner = "authelia-main";
+    owner = "authelia_main";
    sopsFile = ./secrets.yaml;
  };

  services.authelia.instances.main = {
    enable = true;
+    user = "authelia_main";
    secrets = {
      jwtSecretFile = config.sops.secrets.authelia-jwt-secret.path;
      storageEncryptionKeyFile = config.sops.secrets.authelia-storage-encryption-key.path;
@@ -92,8 +93,8 @@
      storage = {
        mysql = {
          host = "/run/mysqld/mysqld.sock'";
-          database = "authelia";
-          username = "authelia";
+          database = "authelia_main";
+          username = "authelia_main";
          password = "socket_auth";
          timeout = "5s";
        };
@@ -120,13 +121,13 @@

  services.mysql.ensureUsers = [
    {
-      name = "authelia-main";
+      name = "authelia_main";
      ensurePermissions = {
-        "authelia-main.*" = "ALL PRIVILEGES";
+        "authelia_main.*" = "ALL PRIVILEGES";
      };
    }
  ];

-  services.mysql.ensureDatabases = [ "authelia-main" ];
-  services.mysqlBackup.databases = [ "authelia-main" ];
+  services.mysql.ensureDatabases = [ "authelia_main" ];
+  services.mysqlBackup.databases = [ "authelia_main" ];
 }