hackclub/burrow
1
0
Fork 0
Code Pull requests Releases Packages Activity Actions

Advertise OIDC discovery on burrow.net

Browse source
This commit is contained in:
Conrad Kramer 2026-04-01 01:26:08 -07:00
parent 0e68c25a99
commit 1ff8270a01
1 changed files with 6 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

6
nixos/modules/burrow-forge.nix
View file

@ -199,6 +199,12 @@ in
reverse_proxy 127.0.0.1:${toString config.services.forgejo.settings.server.HTTP_PORT} reverse_proxy 127.0.0.1:${toString config.services.forgejo.settings.server.HTTP_PORT}
''; '';
"${cfg.siteDomain}".extraConfig = '' "${cfg.siteDomain}".extraConfig = ''
encode gzip zstd
@oidcConfig path /.well-known/openid-configuration
redir @oidcConfig https://${config.services.burrow.authentik.domain}/application/o/${config.services.burrow.authentik.forgejoProviderSlug}/.well-known/openid-configuration 308
@webfinger path /.well-known/webfinger
header @webfinger Content-Type application/jrd+json
respond @webfinger "{\"subject\":\"{query.resource}\",\"links\":[{\"rel\":\"http://openid.net/specs/connect/1.0/issuer\",\"href\":\"https://${config.services.burrow.authentik.domain}/application/o/${config.services.burrow.authentik.forgejoProviderSlug}/\"}]}" 200
@root path / @root path /
redir @root ${homeRepoUrl} 308 redir @root ${homeRepoUrl} 308
respond 404 respond 404