ugit

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16


diff --git a/dragonwell/caddy.nix b/dragonwell/caddy.nix
index eb97c4d8cc97b6ceef7d0f75cf31807f283ead5c..cf8660c877c0b4c56ebd7bef83fb0116688dbd65 100644
--- a/dragonwell/caddy.nix
+++ b/dragonwell/caddy.nix
@@ -65,6 +65,11 @@       '';
       "auth.jolheiser.com".extraConfig = ''
         reverse_proxy localhost:2884
       '';
+      "id.jolheiser.com".extraConfig = ''
+        reverse_proxy /api/* localhost:8080
+        reverse_proxy /.well-known/* localhost:8080
+        reverse_proxy /* localhost:3000
+      '';
       "recipes.jolheiser.com".extraConfig = ''
         reverse_proxy localhost:3663
       '';

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12


diff --git a/dragonwell/default.nix b/dragonwell/default.nix
index 4ae1c1ee9312916e07f390eaae8e8867831cc417..797b691424f46ca879c857eb0bba1393e1f3ad47 100644
--- a/dragonwell/default.nix
+++ b/dragonwell/default.nix
@@ -12,6 +12,7 @@     ./foundry.nix
     ./git-pr.nix
     ./golink.nix
     ./miniserve.nix
+    ./pocket-id.nix
     ./pubserve.nix
     ./restic.nix
     ./soju.nix

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21


diff --git a/dragonwell/pocket-id.nix b/dragonwell/pocket-id.nix
new file mode 100644
index 0000000000000000000000000000000000000000..01feb4bfdff7f473e912486a983a52718db7d0e9
--- /dev/null
+++ b/dragonwell/pocket-id.nix
@@ -0,0 +1,15 @@
+{ config, ... }:
+{
+  age.secrets.pocket-id.file = ../secrets/pocket-id.age;
+  services.pocket-id = {
+    enable = true;
+    settings = {
+      PUBLIC_APP_URL = "https://id.jolheiser.com";
+      APP_NAME = "jolheiser ID";
+      EMAILS_VERIFIED = true;
+      PUBLIC_UI_CONFIG_DISABLED = true;
+      HOST = "localhost";
+    };
+    environmentFile = config.age.secrets.pocket-id.path;
+  };
+}

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19


diff --git a/flake.lock b/flake.lock
index 2dc694a9b899eb664f0afde858e5edcd54f3b8c1..38ce81c6d9b927caf3e300b6546c1bec522f4fa5 100644
--- a/flake.lock
+++ b/flake.lock
@@ -406,11 +406,11 @@       }
     },
     "nixpkgs_11": {
       "locked": {
-        "lastModified": 1736798957,
-        "narHash": "sha256-qwpCtZhSsSNQtK4xYGzMiyEDhkNzOCz/Vfu4oL2ETsQ=",
+        "lastModified": 1746141548,
+        "narHash": "sha256-IgBWhX7A2oJmZFIrpRuMnw5RAufVnfvOgHWgIdds+hc=",
         "owner": "nixos",
         "repo": "nixpkgs",
-        "rev": "9abb87b552b7f55ac8916b6fc9e5cb486656a2f3",
+        "rev": "f02fddb8acef29a8b32f10a335d44828d7825b78",
         "type": "github"
       },
       "original": {

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14


diff --git a/secrets/pocket-id.age b/secrets/pocket-id.age
new file mode 100644
index 0000000000000000000000000000000000000000..57b9b34967a03f2f79e7b4caa2f40d08fda0a9d4
--- /dev/null
+++ b/secrets/pocket-id.age
@@ -0,0 +1,7 @@
+age-encryption.org/v1
+-> ssh-ed25519 E8j6/g yiZaIQNlZYqhimGfLh9eDlRg3TRZOzGzz/FlF3PzUgY
+5ehtgBdPFVpjEx+IKI/us8EclSLerTD0GtQEdpTXgJk
+-> ssh-ed25519 f31uNA UcgDly1+cWneUANspYpzI42WuCdNBazqnKCdVGyxBWg
+OHJBjbAVnVm1haa8Xt6gRl9z1KQSuk+kHvfpZhVqruU
+--- kCZKTNmby7NP+HQE1J2NdjU+OzKYmBzGeBOxwW8hefk
+��|/x�f�<�z�oBbE��=�j;�	��,��4���~o(�qD�V�}�f'0�u0o�}nm߱�ʙ��'���4Ś�N�U4EqU
\ No newline at end of file

 1
 2
 3
 4
 5
 6
 7
 8
 9
10


diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index 07620ba3e548f0f7bbd35348a5cec4cb63fb3e91..c22f7fd8f5810299ee5f59f4edf61ec6a928cff1 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -15,4 +15,5 @@   "dex.age".publicKeys = keys;
   "dex-tailscale.age".publicKeys = keys;
   "dex-tandoor.age".publicKeys = keys;
   "forge-lines.age".publicKeys = keys;
+  "pocket-id.age".publicKeys = keys;
 }

Home