Auth docs.
This commit is contained in:
@@ -20,7 +20,8 @@ NixOS cluster configuration using flakes. Homelab infrastructure with Nomad/Cons
|
||||
├── docs/
|
||||
│ ├── CLUSTER_REVAMP.md # Master plan for architecture changes
|
||||
│ ├── MIGRATION_TODO.md # Tracking checklist for migration
|
||||
│ └── NFS_FAILOVER.md # NFS failover procedures
|
||||
│ ├── NFS_FAILOVER.md # NFS failover procedures
|
||||
│ └── AUTH_SETUP.md # Authentication (Pocket ID + Traefik OIDC)
|
||||
└── services/ # Nomad job specs (.hcl files)
|
||||
```
|
||||
|
||||
@@ -76,6 +77,12 @@ NixOS cluster configuration using flakes. Homelab infrastructure with Nomad/Cons
|
||||
- SOPS for secrets, files in `secrets/`
|
||||
- Keys managed per-host
|
||||
|
||||
**Authentication**:
|
||||
- Pocket ID (OIDC provider) at `pocket-id.v.paler.net`
|
||||
- Traefik uses `traefik-oidc-auth` plugin for SSO
|
||||
- Services add `middlewares=oidc-auth@file` tag to protect
|
||||
- See `docs/AUTH_SETUP.md` for details
|
||||
|
||||
## Migration Status
|
||||
|
||||
**Phase 3 & 4**: COMPLETE! GlusterFS removed, all services on NFS
|
||||
|
||||
Reference in New Issue
Block a user