hosting/selfhostblocks
1
0
Fork 0
Code Issues Activity

Make sure fox nginx to wait on authelia (#292)

Browse source
This commit is contained in:
Pierre Penninckx 2024-09-01 23:51:06 -07:00 committed by GitHub
parent 1bd5810a6d
commit 84e4893665
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 9 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
modules/blocks/authelia.nix
View file

@ -416,6 +416,15 @@ in
${pkgs.bash}/bin/bash -c '(while ! ${pkgs.netcat-openbsd}/bin/nc -z -v -w1 ${cfg.ldapHostname} ${toString cfg.ldapPort}; do echo "Waiting for port ${cfg.ldapHostname}:${toString cfg.ldapPort} to open..."; sleep 2; done); sleep 2' ${pkgs.bash}/bin/bash -c '(while ! ${pkgs.netcat-openbsd}/bin/nc -z -v -w1 ${cfg.ldapHostname} ${toString cfg.ldapPort}; do echo "Waiting for port ${cfg.ldapHostname}:${toString cfg.ldapPort} to open..."; sleep 2; done); sleep 2'
''); '');
# Need to wait on auth endpoint to be available otherwise nginx can fail to start.
# For example when DNS server is restarting at the same time or Auth endpoint itself.
systemd.services.nginx =
{
wants = [ "authelia-${fqdn}.service" ];
after = [ "authelia-${fqdn}.service" ];
};
services.nginx.virtualHosts.${fqdn} = { services.nginx.virtualHosts.${fqdn} = {
forceSSL = !(isNull cfg.ssl); forceSSL = !(isNull cfg.ssl);
sslCertificate = lib.mkIf (!(isNull cfg.ssl)) cfg.ssl.paths.cert; sslCertificate = lib.mkIf (!(isNull cfg.ssl)) cfg.ssl.paths.cert;