diff --git a/utils/modules/authelia/default.nix b/utils/modules/authelia/default.nix index 4a6f047..e9b9b83 100644 --- a/utils/modules/authelia/default.nix +++ b/utils/modules/authelia/default.nix @@ -2,26 +2,24 @@ { sops.secrets.authelia-jwt-secret = { - owner = "authelia_main"; + owner = "authelia-main"; sopsFile = ./secrets.yaml; }; sops.secrets.authelia-backend-ldap-password = { - owner = "authelia_main"; + owner = "authelia-main"; sopsFile = ./secrets.yaml; }; sops.secrets.authelia-storage-encryption-key = { - owner = "authelia_main"; + owner = "authelia-main"; sopsFile = ./secrets.yaml; }; sops.secrets.authelia-session-secret = { - owner = "authelia_main"; + owner = "authelia-main"; sopsFile = ./secrets.yaml; }; services.authelia.instances.main = { enable = true; - user = "authelia_main"; - group = "authelia_main"; secrets = { jwtSecretFile = config.sops.secrets.authelia-jwt-secret.path; storageEncryptionKeyFile = config.sops.secrets.authelia-storage-encryption-key.path; @@ -101,14 +99,14 @@ # timeout = "5s"; # }; local = { - path = "/var/lib/authelia_main/db.sqlite3"; + path = "/var/lib/authelia-main/db.sqlite3"; }; }; notifier = { disable_startup_check = false; filesystem = { - filename = "/var/lib/authelia_main/notification.txt"; + filename = "/var/lib/authelia-main/notification.txt"; }; }; }; @@ -123,25 +121,4 @@ proxyWebsockets = true; }; }; - - services.mysql.ensureUsers = [ - { - name = "authelia_main"; - ensurePermissions = { - "authelia_main.*" = "ALL PRIVILEGES"; - }; - } - ]; - - services.mysql.ensureDatabases = [ "authelia_main" ]; - services.mysqlBackup.databases = [ "authelia_main" ]; - - users.groups."authelia_main" = { - name = "authelia_main"; - }; - users.users."authelia_main" = { - name = "authelia_main"; - isSystemUser = true; - group = "authelia_main"; - }; }