From a5a2a02c9c09f42b9f7b780c674d8098be3d8667 Mon Sep 17 00:00:00 2001
From: ibizaman <ibizapeanut@gmail.com>
Date: Mon, 27 Feb 2023 10:19:54 -0800
Subject: [PATCH] [vaultwarden] skip auth on route required for chrome
 extension

---
 vaultwarden/default.nix | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/vaultwarden/default.nix b/vaultwarden/default.nix
index 69edff4..68a429d 100644
--- a/vaultwarden/default.nix
+++ b/vaultwarden/default.nix
@@ -199,7 +199,11 @@ rec {
       egress = [ "http://127.0.0.1:${toString serviceIngress}" ];
       realm = sso.realm;
       allowed_roles = [ "user" "/admin|admin" ];
-      skip_auth_routes = [ "^/api" "^/identity/connect/token" ];
+      skip_auth_routes = [
+        "^/api"
+        "^/identity/connect/token"
+        "^/identity/accounts/prelogin"
+      ];
       inherit metricsPort;
       keys = {
         cookieSecret = "${serviceName}_oauth2proxy_cookiesecret";