From 144f3bce54bef2879b249202d615070426d483a5 Mon Sep 17 00:00:00 2001
From: Brendan Golden <git@brendan.ie>
Date: Sat, 20 May 2023 19:33:08 +0100
Subject: [PATCH] ldap: got a tool to manage the password resets and ssh key

---
 applications/ldap.nix | 32 +++++++++++++++++++++++++++++++-
 1 file changed, 31 insertions(+), 1 deletion(-)

diff --git a/applications/ldap.nix b/applications/ldap.nix
index 9be518e..ce303f6 100644
--- a/applications/ldap.nix
+++ b/applications/ldap.nix
@@ -56,7 +56,6 @@ Gonna use a priper nixos module for this
 
       # for ldap
       389
-      636
     ];
 
     services.openldap = {
@@ -135,5 +134,36 @@ Gonna use a priper nixos module for this
       };
     };
 
+
+    services.nginx.virtualHosts."${cfg.subdomain}.skynet.ie" = {
+      forceSSL = true;
+      useACMEHost = "skynet";
+      locations."/".proxyPass = "http://localhost:8888";
+    };
+
+    virtualisation.arion = {
+      backend = "docker";
+      projects = {
+        ldap_reset.settings.services.ldap_reset.service = {
+          image = "docker.io/ltbproject/self-service-password:1.5.3";
+            # setting these here as they arent special
+            environment = {
+              # this is what it last ran on
+              SPIGOT_VER="1.18.2";
+              EULA="true";
+            };
+
+            # where the config files are stored
+            volumes = [
+              "${./testing.php}:/var/www/conf/config.inc.local.php"
+            ];
+
+            ports = [
+              "8888:80/tcp"
+            ];
+        };
+      };
+    };
+
   };
 }
\ No newline at end of file