From 6d3cefc29d596fcce0d436391eb6feec16bf2018 Mon Sep 17 00:00:00 2001
From: Elizabeth Hunt <me@liz.coffee>
Date: Wed, 28 May 2025 23:56:55 -0700
Subject: CI part one

---
 playbooks/roles/kanidm/templates/volumes/data/server.toml | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

(limited to 'playbooks/roles/kanidm/templates/volumes/data/server.toml')

diff --git a/playbooks/roles/kanidm/templates/volumes/data/server.toml b/playbooks/roles/kanidm/templates/volumes/data/server.toml
index dd13e1c..afaf0f1 100644
--- a/playbooks/roles/kanidm/templates/volumes/data/server.toml
+++ b/playbooks/roles/kanidm/templates/volumes/data/server.toml
@@ -1,6 +1,7 @@
+version = "2"
+
 bindaddress = "[::]:8443"
 ldapbindaddress = "[::]:3636"
-trust_x_forward_for = true
 db_path = "/data/kanidm.db"
 tls_chain = "/certs/{{ idm_domain }}.pem"
 tls_key = "/certs/{{ idm_domain }}.key"
@@ -8,3 +9,8 @@ log_level = "info"
 
 domain = "{{ idm_domain }}"
 origin = "https://{{ idm_domain }}"
+
+# soon... once https://github.com/kanidm/kanidm/commit/b5cdf9dcf20114ed291700d99e8531226025f197 released >:D
+# x-forward-for = ["{{ swarm_network }}"]
+[http_client_address_info]
+x-forward-for-all-source-trusted = []
-- 
cgit v1.2.3-70-g09d2