diff options
| author | github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> | 2023-08-25 18:00:58 +0000 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2023-08-25 18:00:58 +0000 |
| commit | e79f8fd11834d4567c97dab690fc000a83a0e47d (patch) | |
| tree | f3f0e4a32cb74c810459447467c295c90f7719da /nixos | |
| parent | 8680fe99a1c71d90cd8875da37d57b9f883de725 (diff) | |
| parent | 5cf3fa6186e81451a9af26289d7cdf4ccc58f916 (diff) | |
| download | nixlib-e79f8fd11834d4567c97dab690fc000a83a0e47d.tar nixlib-e79f8fd11834d4567c97dab690fc000a83a0e47d.tar.gz nixlib-e79f8fd11834d4567c97dab690fc000a83a0e47d.tar.bz2 nixlib-e79f8fd11834d4567c97dab690fc000a83a0e47d.tar.lz nixlib-e79f8fd11834d4567c97dab690fc000a83a0e47d.tar.xz nixlib-e79f8fd11834d4567c97dab690fc000a83a0e47d.tar.zst nixlib-e79f8fd11834d4567c97dab690fc000a83a0e47d.zip | |
Merge master into staging-next
Diffstat (limited to 'nixos')
| -rw-r--r-- | nixos/doc/manual/release-notes/rl-2311.section.md | 2 | ||||
| -rw-r--r-- | nixos/modules/services/web-apps/netbox.nix | 12 |
2 files changed, 13 insertions, 1 deletions
diff --git a/nixos/doc/manual/release-notes/rl-2311.section.md b/nixos/doc/manual/release-notes/rl-2311.section.md index f476c621b3ae..6408ebba6421 100644 --- a/nixos/doc/manual/release-notes/rl-2311.section.md +++ b/nixos/doc/manual/release-notes/rl-2311.section.md @@ -66,6 +66,8 @@ - `python3.pkgs.fetchPypi` (and `python3Packages.fetchPypi`) has been deprecated in favor of top-level `fetchPypi`. +- `pass` now does not contain `password-store.el`. Users should get `password-store.el` from Emacs lisp package set `emacs.pkgs.password-store`. + - `mariadb` now defaults to `mariadb_1011` instead of `mariadb_106`, meaning the default version was upgraded from 10.6.x to 10.11.x. See the [upgrade notes](https://mariadb.com/kb/en/upgrading-from-mariadb-10-6-to-mariadb-10-11/) for potential issues. - `getent` has been moved from `glibc`'s `bin` output to its own dedicated output, reducing closure size for many dependents. Dependents using the `getent` alias should not be affected; others should move from using `glibc.bin` or `getBin glibc` to `getent` (which also improves compatibility with non-glibc platforms). diff --git a/nixos/modules/services/web-apps/netbox.nix b/nixos/modules/services/web-apps/netbox.nix index 5f42f42a9af9..6d89ffc2a7b7 100644 --- a/nixos/modules/services/web-apps/netbox.nix +++ b/nixos/modules/services/web-apps/netbox.nix @@ -169,6 +169,13 @@ in { AUTH_LDAP_FIND_GROUP_PERMS = True ''; }; + keycloakClientSecret = lib.mkOption { + type = with lib.types; nullOr path; + default = null; + description = lib.mdDoc '' + File that contains the keycloak client secret. + ''; + }; }; config = lib.mkIf cfg.enable { @@ -227,7 +234,10 @@ in { extraConfig = '' with open("${cfg.secretKeyFile}", "r") as file: SECRET_KEY = file.readline() - ''; + '' + (lib.optionalString (cfg.keycloakClientSecret != null) '' + with open("${cfg.keycloakClientSecret}", "r") as file: + SOCIAL_AUTH_KEYCLOAK_SECRET = file.readline() + ''); }; services.redis.servers.netbox.enable = true; |