From 4f023971fb6ea9467a316d191f035941693d9d30 Mon Sep 17 00:00:00 2001 From: ibizaman Date: Sun, 14 Dec 2025 22:00:25 +0100 Subject: [PATCH] authelia: fix deprecated env var --- modules/blocks/authelia.nix | 9 ++++----- 1 file changed, 4 insertions(+), 5 deletions(-) diff --git a/modules/blocks/authelia.nix b/modules/blocks/authelia.nix index 2f9137a..ce6ff98 100644 --- a/modules/blocks/authelia.nix +++ b/modules/blocks/authelia.nix @@ -411,20 +411,19 @@ in secrets = { jwtSecretFile = cfg.secrets.jwtSecret.result.path; storageEncryptionKeyFile = cfg.secrets.storageEncryptionKey.result.path; + sessionSecretFile = cfg.secrets.sessionSecret.result.path; + oidcIssuerPrivateKeyFile = cfg.secrets.identityProvidersOIDCIssuerPrivateKey.result.path; + oidcHmacSecretFile = cfg.secrets.identityProvidersOIDCHMACSecret.result.path; }; # See https://www.authelia.com/configuration/methods/secrets/ environmentVariables = { AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD_FILE = toString cfg.secrets.ldapAdminPassword.result.path; - AUTHELIA_SESSION_SECRET_FILE = toString cfg.secrets.sessionSecret.result.path; # Not needed since we use peer auth. # AUTHELIA_STORAGE_POSTGRES_PASSWORD_FILE = "/run/secrets/authelia/postgres_password"; - AUTHELIA_STORAGE_ENCRYPTION_KEY_FILE = toString cfg.secrets.storageEncryptionKey.result.path; - AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET_FILE = toString cfg.secrets.identityProvidersOIDCHMACSecret.result.path; - AUTHELIA_IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY_FILE = toString cfg.secrets.identityProvidersOIDCIssuerPrivateKey.result.path; - AUTHELIA_NOTIFIER_SMTP_PASSWORD_FILE = lib.mkIf (!(builtins.isString cfg.smtp)) ( toString cfg.smtp.password.result.path ); + X_AUTHELIA_CONFIG_FILTERS = "template"; }; settings = { server.address = "tcp://127.0.0.1:${toString listenPort}";