hosting/selfhostblocks
1
0
Fork 0
Code Issues Activity

really fix vaultwarden authelia config I think

Browse source
This commit is contained in:
ibizaman 2023-11-08 13:53:32 -08:00
parent b3cc253fd5
commit d160d16cc9
1 changed files with 10 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

17
modules/vaultwarden.nix
View file

@ -166,16 +166,19 @@ in
upstream = "http://127.0.0.1:${toString config.services.vaultwarden.config.ROCKET_PORT}"; upstream = "http://127.0.0.1:${toString config.services.vaultwarden.config.ROCKET_PORT}";
autheliaRules = [ autheliaRules = [
{ {
domain = "${fqdn}/admin"; domain = "${fqdn}";
policy = "two_factor"; policy = "two_factor";
subject = ["group:vaultwarden_admin"]; subject = ["group:vaultwarden_admin"];
resources = [
"^/admin"
];
}
# There's no way to protect the webapp using Authelia this way, see
# https://github.com/dani-garcia/vaultwarden/discussions/3188
{
domain = fqdn;
policy = "bypass";
} }
# There's no way to protect the webapp using Authelia this way, see https://github.com/dani-garcia/vaultwarden/discussions/3188
# {
# domain = fqdn;
# policy = "two_factor";
# subject = ["group:vaultwarden"];
# }
]; ];
} }
]; ];