From 97004b4b756e7551eea11fa93ecc6d4c309df62e Mon Sep 17 00:00:00 2001
From: soraefir <soraefir+git@helcel>
Date: Thu, 14 May 2026 21:11:19 +0200
Subject: [PATCH] Fix ldap

---
 modules/server/containers/apps/authentik.nix       | 3 +++
 modules/server/containers/data/authentik/ldap.yaml | 3 +++
 modules/server/sops/server.yaml                    | 4 ++--
 3 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/modules/server/containers/apps/authentik.nix b/modules/server/containers/apps/authentik.nix
index 6f563b9..4ae928b 100644
--- a/modules/server/containers/apps/authentik.nix
+++ b/modules/server/containers/apps/authentik.nix
@@ -86,6 +86,9 @@ in {
         AUTHENTIK_HOST = "https://${containerCfg.subdomain}.${serverCfg.hostDomain}"; 
         AUTHENTIK_INSECURE = "false"; 
       };
+      overrides = {
+        ports = [ "636:6636" ]; 
+      };
     };
   };
 
diff --git a/modules/server/containers/data/authentik/ldap.yaml b/modules/server/containers/data/authentik/ldap.yaml
index eedde56..340e647 100644
--- a/modules/server/containers/data/authentik/ldap.yaml
+++ b/modules/server/containers/data/authentik/ldap.yaml
@@ -32,6 +32,9 @@ entries:
         !Find [authentik_core.token, [identifier, ldap-outpost-static-token]]
       config:
         log_level: info
+        authentik_host: https://sso.test.helcel.net/
+        refresh_interval: minutes=5
+        authentik_host_insecure: false
 
   - model: authentik_core.user
     state: present
diff --git a/modules/server/sops/server.yaml b/modules/server/sops/server.yaml
index 7ec1827..2efa687 100644
--- a/modules/server/sops/server.yaml
+++ b/modules/server/sops/server.yaml
@@ -29,8 +29,8 @@ sops:
             S1NaTVFTL0FCdm1EQmRsUnlhclZNZlEKEgIe60qkvY8+UocjQU+WM2dTL/1y3Kqk
             d4RrlLP9NSozwVsPYI4ntygvMSApbT4v0YvoO7gV90lkGWEvW1YDfA==
             -----END AGE ENCRYPTED FILE-----
-    lastmodified: "2026-05-14T13:39:26Z"
-    mac: ENC[AES256_GCM,data:g9z/gGOuAYs0DbH8YqAQJjtbLmjTv3+EnNTbrbF87kqpB5w/0fYfCAkhgFRYG2y7Ly1CK3F/b7TU6SKF+MB6Kv4tSF5+m/tez32EDG4jWCNAOLBjGftcRzLgWrUxtTLat6HelVSUt38O8hBHJqh3w57tqLk2rl/YEaevJP/ZZTw=,iv:OnkblA4PjwHKhN4boH+NfFU88hL9ADoSzkCLUPa8aUE=,tag:ruEvZXcPRGE2LA9AzOaF1g==,type:str]
+    lastmodified: "2026-05-14T19:06:28Z"
+    mac: ENC[AES256_GCM,data:4TrhHhmYaZQJC+bGNIuEoJ9kXtiugrm5ZA7c7xmNZ3ZohEYu33fjs0ioGQwDjVLoUG0KQvegBhvyZLLgvXHx6zEPJR4eh9tYTCLsWI6iXk2riMOSA5oH4kCvFt/UWCjr6RUNF14mgLl6dEiONd64r4JEwHOxWDJ2E/aLaUfU7KI=,iv:r8bPQKPXxjOK9UAvJvCC6/74Gs8VHBzPYrKVNXSsyhU=,tag:PMsA0vx7sutWh+PvNoDhng==,type:str]
     pgp:
         - created_at: "2026-05-05T23:46:27Z"
           enc: |-