From 868d2ce1161162dfc88c516ef403863b79a551ae Mon Sep 17 00:00:00 2001
From: soraefir <soraefir+git@helcel>
Date: Fri, 8 May 2026 00:29:12 +0200
Subject: [PATCH] fix

---
 modules/server/database/default.nix | 1 -
 modules/server/nginx/default.nix    | 4 ++--
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/modules/server/database/default.nix b/modules/server/database/default.nix
index e6e20a8..fe293c1 100644
--- a/modules/server/database/default.nix
+++ b/modules/server/database/default.nix
@@ -62,7 +62,6 @@ in {
           
           if [ -f "${config.sops.secrets."${lib.toUpper name}".path}" ]; then
             PASS=$(grep "^DB_PASSWORD=" "${config.sops.secrets."${lib.toUpper name}".path}" | cut -d'=' -f2-)
-            echo $PASS
             if $PSQL -tAc "ALTER USER ${name}_user WITH PASSWORD '$PASS';" ; then
                 echo "✅ Successfully set password for ${name}_user"
             else
diff --git a/modules/server/nginx/default.nix b/modules/server/nginx/default.nix
index bcbcfc0..b7c205e 100644
--- a/modules/server/nginx/default.nix
+++ b/modules/server/nginx/default.nix
@@ -72,7 +72,7 @@ in {
             };
           };
         };
-        "sec.localhost" = {
+        "sec.${cfg.hostDomain}" = {
           forceSSL = true;
           # quic = true;
           # http3 = true;
@@ -121,7 +121,7 @@ in {
             location @goauthentik_proxy_signin {
                 internal;
                 add_header Set-Cookie $auth_cookie;
-                return 302 https://sso.localhost/outpost.goauthentik.io/start?rd=$scheme://$http_host$request_uri;
+                return 302 https://${cfg.containers.authentik.subdomain}.${cfg.hostDomain}/outpost.goauthentik.io/start?rd=$scheme://$http_host$request_uri;
             }
           '';
         };