CI part one

author: Elizabeth Hunt <me@liz.coffee> 2025-05-28 23:56:55 -0700
committer: Elizabeth Hunt <me@liz.coffee> 2025-05-28 23:56:55 -0700
commit: 6d3cefc29d596fcce0d436391eb6feec16bf2018 (patch)
tree: 096b16849467669a3542ee2a3e76c57e4da827dd /playbooks/roles/kanidm/templates/volumes/data/server.toml
parent: b8ffbfe27eae919750ef4d3facf02393d1004287 (diff)
download: infra-6d3cefc29d596fcce0d436391eb6feec16bf2018.tar.gz
infra-6d3cefc29d596fcce0d436391eb6feec16bf2018.zip
1 files changed, 7 insertions, 1 deletions
diff --git a/playbooks/roles/kanidm/templates/volumes/data/server.toml b/playbooks/roles/kanidm/templates/volumes/data/server.toml
index dd13e1c..afaf0f1 100644
--- a/playbooks/roles/kanidm/templates/volumes/data/server.toml
+++ b/playbooks/roles/kanidm/templates/volumes/data/server.toml
@@ -1,6 +1,7 @@
+version = "2"
+
 bindaddress = "[::]:8443"
 ldapbindaddress = "[::]:3636"
-trust_x_forward_for = true
 db_path = "/data/kanidm.db"
 tls_chain = "/certs/{{ idm_domain }}.pem"
 tls_key = "/certs/{{ idm_domain }}.key"
@@ -8,3 +9,8 @@ log_level = "info"
 
 domain = "{{ idm_domain }}"
 origin = "https://{{ idm_domain }}"
+
+# soon... once https://github.com/kanidm/kanidm/commit/b5cdf9dcf20114ed291700d99e8531226025f197 released >:D
+# x-forward-for = ["{{ swarm_network }}"]
+[http_client_address_info]
+x-forward-for-all-source-trusted = []
author	Elizabeth Hunt <me@liz.coffee>	2025-05-28 23:56:55 -0700
committer	Elizabeth Hunt <me@liz.coffee>	2025-05-28 23:56:55 -0700
commit	6d3cefc29d596fcce0d436391eb6feec16bf2018 (patch)
tree	096b16849467669a3542ee2a3e76c57e4da827dd /playbooks/roles/kanidm/templates/volumes/data/server.toml
parent	b8ffbfe27eae919750ef4d3facf02393d1004287 (diff)
download	infra-6d3cefc29d596fcce0d436391eb6feec16bf2018.tar.gz infra-6d3cefc29d596fcce0d436391eb6feec16bf2018.zip