nixos-config/modules/authentik-ldap.nix

{ config, lib, pkgs, ... }:
with lib;

let
  cfg = config.services.authentik-ldap;
  conf = import ./vars.nix;
  version = conf.authentik.version;
in
{
  options = {
    services.authentik-ldap = {
      token = mkOption {
        type = types.str;
        description = "The authentik_token as displayed in authentik.";
      };
    };
  };

  config = {
    virtualisation.oci-containers.containers."authentik-ldap" = {
      image = "ghcr.io/goauthentik/ldap:${version}";
      ports = [
        "389:3389"
        "636:6636"
      ];
      environment = {
        AUTHENTIK_HOST = "https://${conf.authentik.domain}";
        AUTHENTIK_INSECURE = "false";
        AUTHENTIK_DEBUG = "true";
        AUTHENTIK_TOKEN = cfg.token;
      };
      extraOptions = conf.podman.extraOptions;
    };
  };

}
# vim: set et ts=2 sw=2 ai:
added authentik-ldap.nix 2023-08-04 19:07:18 +02:00			`{ config, lib, pkgs, ... }:`
			`with lib;`

			`let`
			`cfg = config.services.authentik-ldap;`
			`conf = import ./vars.nix;`
Upstream unfortunately decided to deprecate the :latest tag 2025-06-05 10:35:57 +02:00			`version = conf.authentik.version;`
added authentik-ldap.nix 2023-08-04 19:07:18 +02:00			`in`
			`{`
			`options = {`
			`services.authentik-ldap = {`
			`token = mkOption {`
			`type = types.str;`
			`description = "The authentik_token as displayed in authentik.";`
			`};`
			`};`
			`};`

			`config = {`
			`virtualisation.oci-containers.containers."authentik-ldap" = {`
Upstream unfortunately decided to deprecate the :latest tag 2025-06-05 10:35:57 +02:00			`image = "ghcr.io/goauthentik/ldap:${version}";`
added authentik-ldap.nix 2023-08-04 19:07:18 +02:00			`ports = [`
			`"389:3389"`
			`"636:6636"`
			`];`
			`environment = {`
			`AUTHENTIK_HOST = "https://${conf.authentik.domain}";`
			`AUTHENTIK_INSECURE = "false";`
			`AUTHENTIK_DEBUG = "true";`
			`AUTHENTIK_TOKEN = cfg.token;`
			`};`
			`extraOptions = conf.podman.extraOptions;`
			`};`
			`};`

			`}`
			`# vim: set et ts=2 sw=2 ai:`