File tree Expand file tree Collapse file tree 1 file changed +10
-23
lines changed
nixos/modules/services/web-apps Expand file tree Collapse file tree 1 file changed +10
-23
lines changed Original file line number Diff line number Diff line change 351351 for more information about hostname configuration.
352352 '' ;
353353 } ;
354-
355- proxy = mkOption {
356- type = enum [ "edge" "reencrypt" "passthrough" "none" ] ;
357- default = "none" ;
358- example = "edge" ;
359- description = ''
360- The proxy address forwarding mode if the server is
361- behind a reverse proxy.
362-
363- - `edge`:
364- Enables communication through HTTP between the
365- proxy and Keycloak.
366- - `reencrypt`:
367- Requires communication through HTTPS between the
368- proxy and Keycloak.
369- - `passthrough`:
370- Enables communication through HTTP or HTTPS between
371- the proxy and Keycloak.
372-
373- See <https://www.keycloak.org/server/reverseproxy> for more information.
374- '' ;
375- } ;
376354 } ;
377355 } ;
378356
379357 example = literalExpression ''
380358 {
381359 hostname = "keycloak.example.com";
382- proxy = "reencrypt";
383360 https-key-store-file = "/path/to/file";
384361 https-key-store-password = { _secret = "/run/keys/store_password"; };
385362 }
497474 See [New Hostname options](https://www.keycloak.org/docs/25.0.0/upgrading/#new-hostname-options) for details.
498475 '' ;
499476 }
477+ {
478+ assertion = cfg . settings . proxy or null == null ;
479+ message = ''
480+ The option `services.keycloak.settings.proxy' has been removed.
481+ Set `services.keycloak.settings.proxy-headers` in combination
482+ with other hostname options as needed instead.
483+ See [Proxy option removed](https://www.keycloak.org/docs/latest/upgrading/index.html#proxy-option-removed)
484+ for more information.
485+ '' ;
486+ }
500487 ] ;
501488
502489 environment . systemPackages = [ keycloakBuild ] ;
You can’t perform that action at this time.
0 commit comments