Cloonar/nixos
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

fix internet for guest network, changes to authelia

Browse source
This commit is contained in:
Dominik Polakovics Polakovics 2023-12-15 14:46:10 +01:00
parent 8b20f2b13c
commit 46d1483880
3 changed files with 6 additions and 17 deletions
Download patch file Download diff file Expand all files Collapse all files

4
hosts/fw.cloonar.com/modules/dhcp4.nix
View file

@ -181,6 +181,10 @@
name = "routers"; name = "routers";
data = "10.42.254.1"; data = "10.42.254.1";
} }
{
name = "domain-name-servers";
data = "9.9.9.9";
}
]; ];
} }
{ {

1
hosts/fw.cloonar.com/modules/firewall.nix
View file

@ -207,6 +207,7 @@
"smart", "smart",
"wg_cloonar", "wg_cloonar",
"podman*", "podman*",
"guest",
} oifname { } oifname {
"wan", "wan",
} counter accept comment "Allow trusted LAN to WAN" } counter accept comment "Allow trusted LAN to WAN"

18
hosts/web-01.cloonar.com/modules/authelia/default.nix
View file

@ -65,7 +65,7 @@
users_filter = "(&({username_attribute}={input})(objectClass=person))"; users_filter = "(&({username_attribute}={input})(objectClass=person))";
username_attribute = "mail"; username_attribute = "mail";
mail_attribute = "mail"; mail_attribute = "mail";
display_name_attribute = "displayName"; display_name_attribute = "cn";
additional_groups_dn = "OU=groups"; additional_groups_dn = "OU=groups";
groups_filter = "(&(member={dn})(objectClass=groupOfNames))"; groups_filter = "(&(member={dn})(objectClass=groupOfNames))";
group_name_attribute = "cn"; group_name_attribute = "cn";
@ -199,22 +199,6 @@
]; ];
userinfo_signing_algorithm = "none"; userinfo_signing_algorithm = "none";
} }
{
id = "hv";
description = "proxmox";
secret = "$pbkdf2-sha512$310000$j5XK.Af8d3BImh/tzaffoA$//S88bs99FmA0I48w2V862cgyCl7vvLIfXh9LNaZJs69jjcTYdzcFRgca8Nt23.6EouVT8cv/92MLJqOEI6Gow";
public = false;
authorization_policy = "one_factor";
redirect_uris = [ "https://hv.cloonar.com:8006" ];
pre_configured_consent_duration = "1y";
scopes = [
"openid"
"profile"
"email"
"groups"
];
userinfo_signing_algorithm = "none";
}
{ {
id = "grafana"; id = "grafana";
description = "Grafana"; description = "Grafana";