diff options
Diffstat (limited to 'nixos/modules/services/security/nginx-sso.nix')
-rw-r--r-- | nixos/modules/services/security/nginx-sso.nix | 67 |
1 files changed, 0 insertions, 67 deletions
diff --git a/nixos/modules/services/security/nginx-sso.nix b/nixos/modules/services/security/nginx-sso.nix deleted file mode 100644 index b4de1d36edd..00000000000 --- a/nixos/modules/services/security/nginx-sso.nix +++ /dev/null @@ -1,67 +0,0 @@ -{ config, lib, pkgs, ... }: - -with lib; - -let - cfg = config.services.nginx.sso; - pkg = getBin cfg.package; - configYml = pkgs.writeText "nginx-sso.yml" (builtins.toJSON cfg.configuration); -in { - options.services.nginx.sso = { - enable = mkEnableOption "nginx-sso service"; - - package = mkOption { - type = types.package; - default = pkgs.nginx-sso; - defaultText = literalExpression "pkgs.nginx-sso"; - description = '' - The nginx-sso package that should be used. - ''; - }; - - configuration = mkOption { - type = types.attrsOf types.unspecified; - default = {}; - example = literalExpression '' - { - listen = { addr = "127.0.0.1"; port = 8080; }; - - providers.token.tokens = { - myuser = "MyToken"; - }; - - acl = { - rule_sets = [ - { - rules = [ { field = "x-application"; equals = "MyApp"; } ]; - allow = [ "myuser" ]; - } - ]; - }; - } - ''; - description = '' - nginx-sso configuration - (<link xlink:href="https://github.com/Luzifer/nginx-sso/wiki/Main-Configuration">documentation</link>) - as a Nix attribute set. - ''; - }; - }; - - config = mkIf cfg.enable { - systemd.services.nginx-sso = { - description = "Nginx SSO Backend"; - after = [ "network.target" ]; - wantedBy = [ "multi-user.target" ]; - serviceConfig = { - ExecStart = '' - ${pkg}/bin/nginx-sso \ - --config ${configYml} \ - --frontend-dir ${pkg}/share/frontend - ''; - Restart = "always"; - DynamicUser = true; - }; - }; - }; -} |