crans
/
nixos
mirror of https://gitlab.crans.org/nounous/nixos
19
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

feat: OpenID NoteKfet pour mediawiki

wiki
Pyjacpp 2026-02-24 19:41:52 +01:00
parent 5a32b7f5e7
commit b0250a7548
No known key found for this signature in database
GPG Key ID: ED479A5A26930939
2 changed files with 16 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
hosts/vm/mediakiwi/default.nix
View File

@ -16,7 +16,7 @@
enable = true; enable = true;
networking = { networking = {
id = "44"; id = 144;
srvNat.enable = true; srvNat.enable = true;
}; };

18
hosts/vm/mediakiwi/mediawiki.nix
View File

@ -16,6 +16,11 @@ in
owner = "mediawiki"; owner = "mediawiki";
}; };
age.secrets.mediawiki-openid = {
file = ../../../secrets/mediakiwi/mediawiki-openid.age;
owner = "mediawiki";
};
environment.systemPackages = with pkgs; [ environment.systemPackages = with pkgs; [
imagemagick imagemagick
@ -101,6 +106,8 @@ in
$wgPluggableAuth_EnableLocalLogin = true; $wgPluggableAuth_EnableLocalLogin = true;
$LDAPAuthentication2AllowLocalLogin = true; $LDAPAuthentication2AllowLocalLogin = true;
$LDAPProviderDomainConfigs = "${config.age.secrets.mediawiki-ldap.path}"; $LDAPProviderDomainConfigs = "${config.age.secrets.mediawiki-ldap.path}";
# On importe les secrets pour l'OpenID.
require '${config.age.secrets.mediawiki-openid.path}';
$wgPluggableAuth_Config = [ $wgPluggableAuth_Config = [
"Compte Crans" => [ "Compte Crans" => [
'plugin' => 'LDAPAuthentication2', 'plugin' => 'LDAPAuthentication2',
@ -108,9 +115,14 @@ in
'domain' => 'crans' 'domain' => 'crans'
] ]
], ],
# "Note BDE" => [ "Note BDE" => [
# 'plugin' => 'OpenIDConnect', 'plugin' => 'OpenIDConnect',
# ] 'data' => [
'providerURL' => 'https://note.crans.org/o/',
'clientID' => $SecretAgeOpenIDClientID,
'clientsecret' => $SecretAgeOpenIDClientSecret,
]
]
]; ];
# Theme # Theme