sora/nixconfig
1
0
Fork 1
Code Issues 2 Pull Requests Actions Releases Activity

Fix db pointer

Browse Source
This commit is contained in:
soraefir
2026-05-06 01:21:01 +02:00
parent a44dc8108d
commit a8c8740b14
2 changed files with 11 additions and 23 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
modules/server/containers/default.nix
View File

@@ -11,20 +11,17 @@ let
in in
{ {
config = lib.mkIf ( enabledConfigs != {} ) { config = lib.mkIf ( enabledConfigs != {} ) {
virtualisation.containers.containersConf.settings = {
containers = {
host_containers_internal = true;
additional_hosts = [ "host.internal:host-gateway" ];
};
};
virtualisation.oci-containers = { virtualisation.oci-containers = {
backend = "podman"; backend = "podman";
containers = mergedContainers; containers = mergedContainers;
}; };
# systemd.services.init-podman-network = {
# description = "Create Podman network with subnet";
# after = [ "network.target" ];
# wantedBy = [ "multi-user.target" ];
# serviceConfig.Type = "oneshot";
# script = ''
# ${pkgs.podman}/bin/podman network inspect podnet || \
# ${pkgs.podman}/bin/podman network create --subnet=10.88.0.0/16 podnet
# '';
# };
}; };
} }

17
modules/server/containers/defs/authentik.nix
View File

@@ -6,12 +6,6 @@ in {
"d ${serverCfg.dataPath}/authentik/template 0755 root root -" "d ${serverCfg.dataPath}/authentik/template 0755 root root -"
]; ];
containers = { containers = {
auth_redis = {
image = "redis:alpine";
hostname = "auth_redis";
volumes = [ ];
environment = { };
};
auth_server = { auth_server = {
image = "ghcr.io/goauthentik/server:latest"; image = "ghcr.io/goauthentik/server:latest";
@@ -21,10 +15,9 @@ in {
"${serverCfg.dataPath}/authentik/templates:/templates" "${serverCfg.dataPath}/authentik/templates:/templates"
]; ];
environment = { environment = {
"AUTHENTIK_REDIS__HOST" = "auth_redis"; "AUTHENTIK_POSTGRESQL__HOST" = "host.internal";
"AUTHENTIK_POSTGRESQL__HOST" = "auth_postgresql"; "AUTHENTIK_POSTGRESQL__USER" = "authentik_user";
"AUTHENTIK_POSTGRESQL__USER" = "authentik"; "AUTHENTIK_POSTGRESQL__NAME" = "authentik_db";
"AUTHENTIK_POSTGRESQL__NAME" = "authentik";
"AUTHENTIK_POSTGRESQL__PASSWORD" = "AUTHENTIK_DB_PASSWORD"; "AUTHENTIK_POSTGRESQL__PASSWORD" = "AUTHENTIK_DB_PASSWORD";
"AUTHENTIK_SECRET_KEY" = "AUTHENTIK_SECRET_KEY"; "AUTHENTIK_SECRET_KEY" = "AUTHENTIK_SECRET_KEY";
"AUTHENTIK_EMAIL__HOST" = "${serverCfg.mailDomain}"; "AUTHENTIK_EMAIL__HOST" = "${serverCfg.mailDomain}";
@@ -45,7 +38,6 @@ in {
}; };
cmd = [ "server" ]; cmd = [ "server" ];
extraOptions = [ extraOptions = [
# "--network=portnet"
"--ip=${containerCfg.ip}" "--ip=${containerCfg.ip}"
]; ];
ports = [ ports = [
@@ -62,8 +54,7 @@ in {
"/var/run/docker.sock:/var/run/docker.sock" "/var/run/docker.sock:/var/run/docker.sock"
]; ];
environment = { environment = {
"AUTHENTIK_REDIS__HOST" = "auth_redis"; "AUTHENTIK_POSTGRESQL__HOST" = "host.internal";
"AUTHENTIK_POSTGRESQL__HOST" = "auth_postgresql";
"AUTHENTIK_POSTGRESQL__USER" = "authentik_user"; "AUTHENTIK_POSTGRESQL__USER" = "authentik_user";
"AUTHENTIK_POSTGRESQL__NAME" = "authentik_db"; "AUTHENTIK_POSTGRESQL__NAME" = "authentik_db";
"AUTHENTIK_POSTGRESQL__PASSWORD" = "AUTHENTIK_DB_PASSWORD"; "AUTHENTIK_POSTGRESQL__PASSWORD" = "AUTHENTIK_DB_PASSWORD";