wiro.world
yep, more dotfiles
weird-row-server: fix circle dependency on headscale
+7
-1
+7
-1
hosts/weird-row-server/headscale.nix
+7
-1
hosts/weird-row-server/headscale.nix
···
69
69
};
70
70
71
71
oidc = {
72
+
# ensure there is no circle dependency
73
+
# Caddy depends on Headscale being available to start if the tailscale plugin is used.
74
+
# But Headscale depends on Authelia that may be behind such a Caddy instance.
75
+
# when both Headscale and Authelia are on the same host, connect directly
76
+
# maybe use a different caddy instance for tailnet related services
72
77
only_start_if_oidc_is_available = true;
73
-
issuer = "https://auth.wiro.world";
78
+
# issuer = "https://auth.wiro.world";
79
+
issuer = "http://localhost:${config.local.ports.authelia.string}";
74
80
client_id = "headscale";
75
81
client_secret_path = config.age.secrets.headscale-oidc-secret.path;
76
82
scope = [