services.firezone.server.provision.accounts.<name>.auth

All authentication providers to provision. The attribute name will only be used to track the provider and does not have any significance for Firezone.

Type

attribute set of (open submodule of (JSON value))

Default

{ }

Example

{
  myoidcprovider = {
    adapter = "openid_connect";
    adapter_config = {
      clientSecretFile = "/run/secrets/oidc-client-secret";
      client_id = "clientid";
      discovery_document_uri = "https://auth.example.com/.well-known/openid-configuration";
      response_type = "code";
      scope = "openid email name";
    };
  };
}

Declared

<nixpkgs/nixos/modules/services/networking/firezone/server.nix>