From fdf9656deb8be274ba89d6399d1e66db65daefc3 Mon Sep 17 00:00:00 2001
From: NullBite <me@nullbite.com>
Date: Sun, 13 Oct 2024 15:33:01 +0200
Subject: [PATCH] rpi4: configure authelia with redis

---
 hosts/rpi4/services.nix | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/hosts/rpi4/services.nix b/hosts/rpi4/services.nix
index d5bb05e..e954a90 100644
--- a/hosts/rpi4/services.nix
+++ b/hosts/rpi4/services.nix
@@ -119,6 +119,9 @@
             default_redirection_url = "https://admin.proot.link";
           }
         ];
+        session.redis = {
+          host = config.services.redis.servers.authelia.unixSocket;
+        };
         notifier.filesystem.filename = "/var/lib/authelia-${inst}/notification.txt";
         authentication_backend.file.path = config.age.secrets.authelia-users.path;
         server.port = lib.mkIf (opts ? port) (opts.port or null);
@@ -131,6 +134,16 @@
       };
     };
 
+    services.redis = {
+      servers.authelia = {
+        enable = true;
+      };
+    };
+
+    users.users."${config.services.authelia.instances.main.user}".extraGroups = let
+      name = config.services.redis.servers.authelia.user;
+    in [ name ];
+
     services.nginx = {
       enable = true;
       recommendedProxySettings = true;