donetick
Example
{config, ...}: {
donetick = {
enable = true;
# Disable user registration, so only OIDC login is possible
settings.is_user_creation_disabled = true;
jwtSecretFile = config.sops.secrets."donetick/jwt_secret".path;
oidc = {
enable = true;
clientSecretFile = config.sops.secrets."donetick/authelia/client_secret".path;
clientSecretHash = "$pbkdf2-sha512$...";
};
};
}Stack Options
nps.stacks.donetick.containers.donetick
Alias of {option}services.podman.containers.donetick.
nps.stacks.donetick.enable
Whether to enable donetick.
nps.stacks.donetick.jwtSecretFile
Path to the file containing the JWT secret.
nps.stacks.donetick.oidc.clientSecretFile
The file containing the client secret for the OIDC client that will be registered in Authelia.
nps.stacks.donetick.oidc.clientSecretHash
The hashed client_secret. Will be set in the Authelia client config. For examples on how to generate a client secret, see
https://www.authelia.com/integration/openid-connect/frequently-asked-questions/#client-secret
nps.stacks.donetick.oidc.enable
Whether to enable OIDC login with Authelia. This will register an OIDC client in Authelia and setup the necessary configuration.
For details, see:
nps.stacks.donetick.oidc.userGroup
Users of this group will be able to log in
nps.stacks.donetick.settings
Additional donetick settings. Will be provided as the selhosted.yaml file.
See https://github.com/donetick/donetick/blob/main/config/selfhosted.yaml