torjus/nixos-servers
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects 1 Releases Wiki Activity
Files
79a6a7271956598ef1a044f2615657083e70fef9
nixos-servers/services/kanidm
History
Torjus Håkestad 030e8518c5
Some checks failed
Run nix flake check / flake-check (push) Failing after 4m3s
Details
grafana: add Grafana on monitoring02 with Kanidm OIDC 
Deploy Grafana test instance on monitoring02 with:
- Kanidm OIDC authentication (admins -> Admin role, others -> Viewer)
- PKCE enabled for secure OAuth2 flow (required by Kanidm)
- Declarative datasources for Prometheus and Loki on monitoring01
- Local Caddy for TLS termination via internal ACME CA
- DNS CNAME grafana-test.home.2rjus.net

Terraform changes add OAuth2 client secret and AppRole policies for
kanidm01 and monitoring02.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-02-08 20:23:26 +01:00
..
default.nix
grafana: add Grafana on monitoring02 with Kanidm OIDC
2026-02-08 20:23:26 +01:00