From 061c194b1bd68abbf53e531569948d743b10abcc Mon Sep 17 00:00:00 2001 From: ibizaman Date: Tue, 18 Nov 2025 23:23:04 +0100 Subject: [PATCH] docs: remove misleading comment --- modules/services/karakeep.nix | 5 ++--- modules/services/open-webui.nix | 5 ++--- modules/services/pinchflat.nix | 33 ++++++++++++++++++--------------- 3 files changed, 22 insertions(+), 21 deletions(-) diff --git a/modules/services/karakeep.nix b/modules/services/karakeep.nix index ed6000c..6454c61 100644 --- a/modules/services/karakeep.nix +++ b/modules/services/karakeep.nix @@ -83,9 +83,8 @@ in enable = lib.mkEnableOption "SSO integration."; authEndpoint = lib.mkOption { - type = lib.types.nullOr lib.types.str; - default = null; - description = "Endpoint to the SSO provider. Leave null to not have SSO configured."; + type = lib.types.str; + description = "Endpoint to the SSO provider."; example = "https://authelia.example.com"; }; diff --git a/modules/services/open-webui.nix b/modules/services/open-webui.nix index e6b1488..7dc743e 100644 --- a/modules/services/open-webui.nix +++ b/modules/services/open-webui.nix @@ -101,9 +101,8 @@ in enable = lib.mkEnableOption "SSO integration."; authEndpoint = lib.mkOption { - type = lib.types.nullOr lib.types.str; - default = null; - description = "Endpoint to the SSO provider. Leave null to not have SSO configured."; + type = lib.types.str; + description = "Endpoint to the SSO provider."; example = "https://authelia.example.com"; }; diff --git a/modules/services/pinchflat.nix b/modules/services/pinchflat.nix index 6d509bb..469ee66 100644 --- a/modules/services/pinchflat.nix +++ b/modules/services/pinchflat.nix @@ -100,9 +100,8 @@ in enable = lib.mkEnableOption "SSO integration."; authEndpoint = lib.mkOption { - type = lib.types.nullOr lib.types.str; - default = null; - description = "Endpoint to the SSO provider. Leave null to not have SSO configured."; + type = lib.types.str; + description = "Endpoint to the SSO provider."; example = "https://authelia.example.com"; }; @@ -174,19 +173,23 @@ in }; shb.nginx.vhosts = [ - { - inherit (cfg) subdomain domain ssl; - inherit (cfg.sso) authEndpoint; + ( + { + inherit (cfg) subdomain domain ssl; - upstream = "http://127.0.0.1:${toString cfg.port}"; - autheliaRules = lib.optionals (cfg.sso.enable) [ - { - domain = "${cfg.subdomain}.${cfg.domain}"; - policy = cfg.sso.authorization_policy; - subject = [ "group:${cfg.ldap.userGroup}" ]; - } - ]; - } + upstream = "http://127.0.0.1:${toString cfg.port}"; + autheliaRules = lib.optionals (cfg.sso.enable) [ + { + domain = "${cfg.subdomain}.${cfg.domain}"; + policy = cfg.sso.authorization_policy; + subject = [ "group:${cfg.ldap.userGroup}" ]; + } + ]; + } + // lib.optionalAttrs cfg.sso.enable { + inherit (cfg.sso) authEndpoint; + } + ) ]; services.prometheus.scrapeConfigs = [