forgejo: make sure ldap is setup when sso is enabled

This commit is contained in:
ibizaman 2026-02-26 22:22:55 +01:00 committed by Pierre Penninckx
parent d8981d465b
commit c0c9562789
2 changed files with 8 additions and 0 deletions

View file

@ -553,6 +553,13 @@ in
# For Forgejo config: https://forgejo.org/docs/latest/admin/config-cheat-sheet
# For cli info: https://docs.gitea.com/usage/command-line
(mkIf (cfg.enable && cfg.sso.enable != false) {
assertions = [
{
assertion = cfg.ldap.enable == true;
message = "'shb.forgejo.ldap.enable' must be set to true and ldap configured when 'shb.forgejo.sso.enable' is true. Otherwise you will never be able to register new accounts.";
}
];
services.forgejo.settings = {
oauth2 = {
ENABLED = true;

View file

@ -330,6 +330,7 @@ in
basic
shb.test.certs
https
ldap
shb.test.ldap
(shb.test.sso config.shb.certs.certs.selfsigned.n)
sso