portunus: fix dex enable

SuperSandro2000 · Apr 28, 2024 · f69f62d · f69f62d
1 parent f7a4bfb
commit f69f62d
Showing 1 changed file with 9 additions and 9 deletions.
diff --git a/modules/portunus.nix b/modules/portunus.nix
@@ -126,11 +126,8 @@ in
       callbackURL = "https://${cfg.domain}/oauth2/callback";
       clientID = "oauth2_proxy"; # - is not allowed in environment variables
     in {
-      dex = {
-        enable = lib.mkIf cfg.configureOAuth2Proxy true;
-        # the user has no other option to accept this and all clients are internal anyway
-        settings.oauth2.skipApprovalScreen = true;
-      };
+      # the user has no other option to accept this and all clients are internal anyway
+      dex.settings.oauth2.skipApprovalScreen = true;
 
       oauth2_proxy = lib.mkIf cfg.configureOAuth2Proxy {
         enable = true;
@@ -148,10 +145,13 @@ in
         };
       };
 
-      portunus.dex.oidcClients = lib.mkIf cfg.configureOAuth2Proxy [{
-        inherit callbackURL;
-        id = clientID;
-      }];
+      portunus.dex = lib.mkIf cfg.configureOAuth2Proxy {
+        enable = true;
+        oidcClients = [{
+          inherit callbackURL;
+          id = clientID;
+        }];
+      };
     };
 
     security.ldap = lib.mkIf cfg.ldapPreset {