Switch authentik env file to an actual env file
ini is not env.
This commit is contained in:
parent
f28aa733cc
commit
43cde1e2f4
3 changed files with 29 additions and 31 deletions
|
|
@ -5,12 +5,12 @@ with lib;
|
|||
|
||||
config = mkIf config.myModules.authentik.enable {
|
||||
sops.secrets.authentik-env = {
|
||||
format = "ini";
|
||||
format = "env";
|
||||
group = "authentik";
|
||||
mode = "0440";
|
||||
owner = "authentik";
|
||||
restartUnits = ["authentik"];
|
||||
sopsFile = ../../secrets/authentik.ini;
|
||||
sopsFile = ../../secrets/authentik.env;
|
||||
};
|
||||
users.groups.authentik = {};
|
||||
users.users.authentik = {
|
||||
|
|
|
|||
27
secrets/authentik.env
Normal file
27
secrets/authentik.env
Normal file
|
|
@ -0,0 +1,27 @@
|
|||
AUTHENTIK_EMAIL__HOST=ENC[AES256_GCM,data:kb2N1evWoc7AINYuQGoG3G2bsi6n,iv:tAOieZNCOgcGCtHtrlYXBtp09a++WH79A+E7M4irIN0=,tag:4dfcXmJfRI4de2et1dkh7Q==,type:str]
|
||||
AUTHENTIK_EMAIL__PORT=ENC[AES256_GCM,data:Ne3Kgg==,iv:OHHdIjNEeP9QPTDdjim39jQy5vZTxyTuCDjuubqj4cM=,tag:vHELeE8N4/Hrl3TAuKlbVw==,type:str]
|
||||
AUTHENTIK_EMAIL__USERNAME=ENC[AES256_GCM,data:4PMcNtQZOCcepXOFoHQJe8A+0AdOUGQk76rI2EE=,iv:C5ATwjfF+/lkMhUPUF1u4EMmlfe0oCuagrajKVsmsbQ=,tag:PNM+kYe8rgDmOumtfvzE8A==,type:str]
|
||||
AUTHENTIK_EMAIL__PASSWORD=ENC[AES256_GCM,data:761BeyOs9Ay9rb64FQAk14SqD54tcy2P,iv:D9Dn+jXKeSBWXvsyvMHcnM4NkNm1FAph/j1XAOYVG00=,tag:pDJzzlLlpNpQPAyr/IIyFQ==,type:str]
|
||||
AUTHENTIK_EMAIL__USE_TLS=ENC[AES256_GCM,data:eo/gi3M=,iv:M91bZsoVwsk6uXv/B6S1y7JODDWmeAvwBwInKnZTnPM=,tag:WWsy2gccV/Wb9DPFLcK+xg==,type:str]
|
||||
AUTHENTIK_EMAIL__USE_SSL=ENC[AES256_GCM,data:VmgNFw==,iv:e+wPUyS1Lh4ertUTQJYeGlJQUfnsROZiKUKLVPOrDMQ=,tag:aKm2EHUmsoYFfja2EJImFQ==,type:str]
|
||||
AUTHENTIK_EMAIL__TIMEOUT=ENC[AES256_GCM,data:r7w=,iv:CuqardKt0jMVPfefmit02Nl/FX7TedPfAqr/nHpidq4=,tag:2ylJuYA+Cs9bTogv4bBpKQ==,type:str]
|
||||
AUTHENTIK_EMAIL__FROM=ENC[AES256_GCM,data:E5AT4uoc9A89Yj/fgeGXoTJ/hn2ymNtmZuCXQJ8=,iv:xdQPETFf8PQ3Hi1jM0w0tfmihSzJyzzk9Z93nF21Mcc=,tag:afzrOpHJ4/fDwVUW7S1hqw==,type:str]
|
||||
AUTHENTIK_ERROR_REPORTING__ENABLED=ENC[AES256_GCM,data:95RHqg==,iv:4aEsQGqMPZAHEl2a2mEPQgE03FmxXX1oFLzYPeDXcAA=,tag:Bkh+GRxfGOximBNfJV0ZZg==,type:str]
|
||||
AUTHENTIK_LOG_LEVEL=ENC[AES256_GCM,data:s6mBg616vw==,iv:i+hVmUOtUIrbKvxlD8E3Kkq+yYOYb+/xYYqKtyQdB1Q=,tag:DeSHTfgXtWJLkkWQbPydOQ==,type:str]
|
||||
AUTHENTIK_POSTGRESQL__HOST=ENC[AES256_GCM,data:XvfqJG6+OzmWV6KmXP9d1KmyR5C2aOmpDGWKzJG34JyTR4DuabJbU9nY0iXjf+bjPBk9vvuaFw3j40ZzmLf0r1hhd648fBhKk/MkgRQ2UEg=,iv:+STIftFRvsCXB0jt2QNIYCJWyH8nGi9mHgSQGK8a3tQ=,tag:0EHgHq8lF38wm5Wm4q9Ang==,type:str]
|
||||
AUTHENTIK_POSTGRESQL__NAME=ENC[AES256_GCM,data:2G3q8ujcsRCb,iv:O+UPxZqrBjQkRegXRyv1+YdOduZcGREo3ZnLAU6uytE=,tag:gh9IbsEp/rszIpaZ34Chag==,type:str]
|
||||
AUTHENTIK_POSTGRESQL__PASSWORD=ENC[AES256_GCM,data:nFRhrE5L9dTX0S5E94EsV5QXlvTL,iv:GBi4EY+p7AoFdF7pslpfUjUWH6yUAE/2sXScPrEv9hU=,tag:UdkiYgEGxeRpXo4atG4ceQ==,type:str]
|
||||
AUTHENTIK_POSTGRESQL__PORT=ENC[AES256_GCM,data:Fgt54Jw=,iv:vowf1xrkXGIJOutrTvsXWhhLGRLUtUvulxO84BfHP+E=,tag:1alr1aXLiS9lvSBCE24ngQ==,type:str]
|
||||
AUTHENTIK_POSTGRESQL__USER=ENC[AES256_GCM,data:Eav02SqSk7EbJByQyyk=,iv:TRm0Z17Hx4wwkG29D00Dx/fJ7E+0fgweW72YnKK3kmo=,tag:vwYp8VFCO3LjsYvWaHadNw==,type:str]
|
||||
AUTHENTIK_REDIS__HOST=ENC[AES256_GCM,data:LdRLDLjKtCiem7uGBlxgBSl8c7YyYbzJ,iv:V9kEC6qxGyTt5EQpRHRruey03boPb93A3XVrtIphA3w=,tag:2noQ8HkeeFsFcZOvAhSjqw==,type:str]
|
||||
AUTHENTIK_SECRET_KEY=ENC[AES256_GCM,data:8jb7qazlI3luTrBuUWNOy/TTkiiYLW+XYqFKmFo8rgRmbfMqKwM6485U7i7GNFHSVqQEaOXc39WEZR6dZILIZ47nJDETeSnMGGgLz8T7UwU=,iv:GV+cfsX+kXED//ladyo9jg5XLOmg8l1bGTqNB7JnwfU=,tag:ddGxFUKrMSVWWjBrDP1N2w==,type:str]
|
||||
sops_age__list_0__map_enc=-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAvRWx1dG5Qc0hEcWphenNa\nQmN0UjU1dkpLSzdjb3NPWkZ6OVhKZnlFSG5rCnNoRkY3S3RpcUFNY0xoK3A5VGYr\naG16c2ZTU3VMR0o1b0k3SU96UG5nUXcKLS0tIHJGS1o5QnZmdnMxMXJKS3k1WWpI\ncVdnNzgyU3JaYzJVOEdPYzhPa3Q2RncKo24xd4QgvIT7E9M+4y0btcrBee5t0X6n\nJy5hYLc3SkGOJp2d0MX0E//uZY4tvme1CXNvqT5voq/QhAxFaOxVJg==\n-----END AGE ENCRYPTED FILE-----\n
|
||||
sops_age__list_0__map_recipient=age15y4k929zaj9fdg3vd40pa40tgvrgv9mn22xfummn5zxfmkcw5d0st6prjx
|
||||
sops_age__list_1__map_enc=-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBvdC84ODVoVUxxQzNaWXY0\nSXVHK2QySmJjdVJlWTV0S1VpT0d6em9DV21nCmszSnRYQXdpVlhYemd3amJJclZs\neE1JcUFTOFhHbWdxWW1ZQitTYXZhVGsKLS0tIEcyL1ZEbTdCTzU5QVVqV3NoN1JP\naVFEZzVrTXlncU11UGR5M1MyNURMMDgKNpX1A40ukfLM9DJ/PNnJ23/3zCNMX+I7\ndTFJOKTS2DxEH8ACbJAZsqx+CxAdDqkJ2HbyNY6iariyiKU0SZ7OxQ==\n-----END AGE ENCRYPTED FILE-----\n
|
||||
sops_age__list_1__map_recipient=age1kgwk20cc6t68kqj5nhem6swvx6k4e7zjx2xdwy382360h8tdyqrq0nn3gf
|
||||
sops_age__list_2__map_enc=-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBZVFYzMUVhcldoZ0krZUZX\nZCtlOGlodWhIWE5vOU52U0pKUDhxZzZiYkJNClBwZ0pQYkpKL2JWUGkxZElieEhN\nY0dJNU9wSnZLem5QOFh4cjk3M2hIeVUKLS0tIGJwY0MrUEVoZi9zWURRZm1RcmJ4\nRVJINmhkM1p2eFhRUWEyN2s0YmJZb2MKLy6aHInmhFNp9fz2lJNHhYPjWsB0Mxf6\naX0EonKX4hMhY3euQ5S8GkdknrhXgiWj9y0y3bfIigDbrxoZMQZY4g==\n-----END AGE ENCRYPTED FILE-----\n
|
||||
sops_age__list_2__map_recipient=age1lzzlx60f9ra4evdkn4l9px735mz7uxml5467ptzc4hg3t86gn9mq3ddsxy
|
||||
sops_lastmodified=2025-07-18T17:00:03Z
|
||||
sops_mac=ENC[AES256_GCM,data:H+c96xhIglR4wZ85Qe18zLFQPkgJDurQ+BjM3X0BrAJt8F0nBdgvA3UHIcehp5TaVyW9qiylXDFoij5zf28EVKhbV+95j2f2tDCRjt5nYHwUis1ZCbdE/ew9V6aW07obna2gU6f0oB2VNgRznHLeaE+IPC0hRtKrKnrU9+M1cxE=,iv:cNFGPVR3jTqxcrvn/RR7pWSEIqwTkpVQis8hMLbTvtw=,tag:9lglNfqt/FPSFyaXdTUojg==,type:str]
|
||||
sops_unencrypted_suffix=_unencrypted
|
||||
sops_version=3.10.2
|
||||
|
|
@ -1,29 +0,0 @@
|
|||
AUTHENTIK_EMAIL__HOST = ENC[AES256_GCM,data:3VcyOwDenDPDi8xdNqLxVVvptymw,iv:fG0z5HEaZsHAyQmCqdVCRw3ECDKkYLFmzlT52foqI4A=,tag:SOZGpR8MfOz9PnM0qaLJ2A==,type:str]
|
||||
AUTHENTIK_EMAIL__PORT = ENC[AES256_GCM,data:wwyU8w==,iv:laGt2Y3bvsJSRwcJHP9l2qKHossgt08ajrdQFTQo5KU=,tag:ikMmzle8xxtzpyvoRSMYtQ==,type:str]
|
||||
AUTHENTIK_EMAIL__USERNAME = ENC[AES256_GCM,data:dt6ZG5HYu5qiNY/U/sF7r0apCQ41UX6UVkTdD/w=,iv:zjNLusP+C8nL6XYmMiD8i6/qZ3RCsKFE9BWEFhlKusE=,tag:KSJ74S0E1zFdLnYRvwZKiw==,type:str]
|
||||
AUTHENTIK_EMAIL__PASSWORD = ENC[AES256_GCM,data:wU6B55f9gYBECr28XY/siBLG0sSuTNEn,iv:3v3ofm77H/gkxADqKYG+0arzb1TxnKo+M/WOkRrZyn4=,tag:d3+XyC4cRvAe2/H7l6w3Qg==,type:str]
|
||||
AUTHENTIK_EMAIL__USE_TLS = ENC[AES256_GCM,data:mS5jhes=,iv:GNmmTE6HmzFR1UdbBFN6oNleNLbg9uXjtYWAMY6O0/s=,tag:OyJFUL5yHCaKyAeASLlelw==,type:str]
|
||||
AUTHENTIK_EMAIL__USE_SSL = ENC[AES256_GCM,data:G48SoQ==,iv:Jg2S8Yr9VAQwE2MtriixPKLN2jXWfLN0NRy6IjzMJsM=,tag:Q3DCSarT03rvrPSP7CDtLA==,type:str]
|
||||
AUTHENTIK_EMAIL__TIMEOUT = ENC[AES256_GCM,data:6fY=,iv:uBaemtceYYZEYX8QJo2eVg2sMSjZ6MaSNFwA2sttRb0=,tag:zBIvh+DmnKY50uM0DB9TrQ==,type:str]
|
||||
AUTHENTIK_EMAIL__FROM = ENC[AES256_GCM,data:0H4rhXYlusYHwPYtuboNtUF0CBDNLsDQwDGzdbY=,iv:hw21P5sVGLc5PwpH8PEpKV+SGGTCzRb1VJU9A3g3ZtU=,tag:8aw3oRiURjVeUUGZitpwJw==,type:str]
|
||||
AUTHENTIK_ERROR_REPORTING__ENABLED = ENC[AES256_GCM,data:ipfkRg==,iv:3O6agxOmK8IdxJBzKfSCOtowx30hnvSnCfMm6w1YbrM=,tag:bFeejYjsuyQaBy3fADAIdA==,type:str]
|
||||
AUTHENTIK_LOG_LEVEL = ENC[AES256_GCM,data:xZVfh6gaEQ==,iv:YGPYYRS2Ojy6GzBVMRQB8ohT0a6AMoEprhRkHq6a+YA=,tag:ygxF/uuEjVm/djBNTYmGeg==,type:str]
|
||||
AUTHENTIK_POSTGRESQL__HOST = ENC[AES256_GCM,data:5gIamUsfbRpqWdXyLk5rIx20d/r8vN0oNHS/cveqr2wYLO+QtwnSyLQ9BfJNfkN5BHAwRydmtFcJ8gmSVRt1PEI1hYMvvqKe4vLXLUJQdJk=,iv:oBawPNaClmN3CIDguTBuY7KtalZsHERTe/zqZsEgEJk=,tag:RxvN+QdwLGZUObDoHK5fRA==,type:str]
|
||||
AUTHENTIK_POSTGRESQL__NAME = ENC[AES256_GCM,data:JW1YamPzwlIe,iv:heqg4szAIyrtH7l/HyNWbtT9tB1sRFr+PLQrMR/NykY=,tag:wQ3f06DYZBfAvi04HCY7PQ==,type:str]
|
||||
AUTHENTIK_POSTGRESQL__PASSWORD = ENC[AES256_GCM,data:3XqxWW0H3hJe5UGzXiiGpK/Dqrp2,iv:QgzWmPzwLqWdP1Pkvh7y1qvSzKcGzfZSWMSkBbeAwTM=,tag:xsx+9Zpf+Xsgz4x3CeOHLg==,type:str]
|
||||
AUTHENTIK_POSTGRESQL__PORT = ENC[AES256_GCM,data:A/NDoLo=,iv:EJfJ4pJktot/gjBlvwXgV+CBeQ7BKmNtEsKGik3lS2E=,tag:pOjIsESpBLuGh5GbIqtJ3Q==,type:str]
|
||||
AUTHENTIK_POSTGRESQL__USER = ENC[AES256_GCM,data:EXZ5wHzLO989jgQIzDw=,iv:71UFhCqBCFxu9F4ze2afc3CRPHSm6v8cwmev7LRdlLM=,tag:YzuPA83SAGijQpGFrBUV1Q==,type:str]
|
||||
AUTHENTIK_REDIS__HOST = ENC[AES256_GCM,data:rq4dsga54OGPgIjBxPC0aNNA5o2yTnmP,iv:N9uS4Ug/ras5kbPRTUmCRPw/onkBz4nkALKFUBCzW4E=,tag:/eQjqHcuoNsQOO2/+HNjCg==,type:str]
|
||||
AUTHENTIK_SECRET_KEY = ENC[AES256_GCM,data:Fq00M135AbxroZd+cgQz9KKHxB5/Lu5QRtH0LIy0PkuX6b1RZt3P949K6IoKaMYGqJrV2EXxGmahjXJ5N0D2KLLzp6sArsKTO7Qn4OTg1MA=,iv:X1l5cmTjz6UiEaFL4SWScZn9ysvtjQgAADytrc1kp3I=,tag:RDC8ILHJtl0mVP0TbAdZ7Q==,type:str]
|
||||
|
||||
[sops]
|
||||
age__list_1__map_enc = -----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBMZDRtZEQxS3JvSGJxQTFO\nU09QQUcxQWh1dDBvUTgvQVBoYnJueGsxVEhrCnpMREsySnMwVDZhMGRjZWd6cnRV\nc2tMa3krM3gxUWFwa25YWW4wWStJUFEKLS0tIGNrK0NISHNQY3V1bEZWTVo5SjRu\nZkVwMHU4bm9jV0gzQkVjeisxZlFCSXcKEMzyRL8LzNalB48OTvhZmwaBQyXTSNUD\nJ21IwaBtZA2or+LUEGxYC0enGPFbNWECmAm/4R8SRCaCGRd+ceWQww==\n-----END AGE ENCRYPTED FILE-----\n
|
||||
age__list_2__map_recipient = age1lzzlx60f9ra4evdkn4l9px735mz7uxml5467ptzc4hg3t86gn9mq3ddsxy
|
||||
lastmodified = 2025-07-18T16:55:56Z
|
||||
mac = ENC[AES256_GCM,data:gE808Kt9FRqh/So0dcVU0v/e1cdjjvwgEnPMrPLkrX+fbN/RA6jRwvPG/+2PjFnSuE7LgHfjHfOg4JuUZ6A3LT7EkulpCh5UwVzVwU7j/l+42750qHivhgDnJ+sMAlR4QKi/7wlW+IWQDjwFUMT/yOUaJxWqjKFMavESipGwxwY=,iv:XR9Nm4hWBJwtYhgd1rV7vCPWNrz3DwTHm3airhw13oE=,tag:r+1sdzHB0DgOQgbceRHrmQ==,type:str]
|
||||
version = 3.10.2
|
||||
age__list_0__map_enc = -----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB4R3lkWHZkZjd5QTBBNXVG\nNnZVM3VneWpxVzRsTSt6bFhYOXlFVm5RcnlFCktPQ2IycDJhQkxpRWlEWTFsUkw2\nTVE5cWFQRmlIK0Yzc05ZT1NvVHl6ZFEKLS0tIFVuejVyWGNNU3pEOXRlYlBmNEtw\nY1dZL0JUNENHVlAxc1prUlFraG9SK0kKtQ8jPuD0sHYq5E63hSAscP8WBZD/J0by\ntYn5jatq+Za6EHzPvjTb6iSfet5jwmgPu0GeEweSgmDhXVvJtpQsCA==\n-----END AGE ENCRYPTED FILE-----\n
|
||||
age__list_1__map_recipient = age1kgwk20cc6t68kqj5nhem6swvx6k4e7zjx2xdwy382360h8tdyqrq0nn3gf
|
||||
unencrypted_suffix = _unencrypted
|
||||
age__list_2__map_enc = -----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBOdFIzU2phdFVGTCthZjRW\nWGNGa2xXUXd6bkNNQnJhMGVtV28xOFc3c1NNCmdGNVVQenRkRzFqZStEUXVIVjE2\nZVU5R2FUcjR0cGFEaWtEby9SOFFlTVEKLS0tIGlNRUd0dWRQcTZtK1kzTDJ5MXZS\ncDd2L0dTN005UTFPQW8xRkhobUlYdncKVZSyrqIcdBymAxBVdqvB75yTl1gIzAUn\nWAvOw7HMU8OccvAi7cOqAdz+U0J6/Ri+pJeh3N3IOS1ssWE1hcN3lQ==\n-----END AGE ENCRYPTED FILE-----\n
|
||||
age__list_0__map_recipient = age15y4k929zaj9fdg3vd40pa40tgvrgv9mn22xfummn5zxfmkcw5d0st6prjx
|
||||
Loading…
Add table
Add a link
Reference in a new issue