freshrss

Example

{config, ...}: {
  freshrss = {
    enable = true;
    oidc = {
      enable = true;
      clientSecretHash = "$pbkdf2-sha512$...";
      clientSecretFile = config.sops.secrets."freshrss/authelia/client_secret".path;
      cryptoKeyFile = config.sops.secrets."freshrss/authelia/crypto_key".path;
    };
  };
}

Stack Options

nps.stacks.freshrss.adminProvisioning.apiPasswordFile

Path to a file containing the admin API password

Type

absolute path

Default

null

Declaration

<nps/modules/freshrss>

nps.stacks.freshrss.adminProvisioning.email

Email address for the admin user

Type

string

Declaration

<nps/modules/freshrss>

nps.stacks.freshrss.adminProvisioning.enable

Whether to automatically create an admin user on the first run. If set to false, you will be prompted to create an admin user when visiting the FreshRSS web interface for the first time. This only affects the first run of the container.

If you want to use OIDC login, disable this option. The first logged in OIDC user will be admin in that case. See https://freshrss.github.io/FreshRSS/en/admins/16_OpenID-Connect.html

Type

boolean

Default

false

Declaration

<nps/modules/freshrss>

nps.stacks.freshrss.adminProvisioning.passwordFile

Path to a file containing the admin user password

Type

absolute path

Default

null

Declaration

<nps/modules/freshrss>

nps.stacks.freshrss.adminProvisioning.username

Username for the admin user

Type

string

Default

"admin"

Declaration

<nps/modules/freshrss>

nps.stacks.freshrss.containers.freshrss

Alias of {option}services.podman.containers.freshrss.

Type

submodule

Declaration

<nps/modules/freshrss>

nps.stacks.freshrss.enable

Whether to enable freshrss.

Type

boolean

Default

false

Example

true

Declaration

<nps/modules/freshrss>

nps.stacks.freshrss.oidc.clientSecretFile

The file containing the client secret for the OIDC client that will be registered in Authelia.

Type

string

Declaration

<nps/modules/freshrss>

nps.stacks.freshrss.oidc.clientSecretHash

The hashed client_secret. Will be set in the Authelia client config. For examples on how to generate a client secret, see

https://www.authelia.com/integration/openid-connect/frequently-asked-questions/#client-secret

Type

string

Declaration

<nps/modules/freshrss>

nps.stacks.freshrss.oidc.cryptoKeyFile

Opaque key used for internal encryption.

Type

string

Declaration

<nps/modules/freshrss>

nps.stacks.freshrss.oidc.enable

Whether to enable OIDC login with Authelia. This will register an OIDC client in Authelia and setup the necessary configuration.

The first user created with OIDC login on initial setup will be admin. Make sure to follow the 'Initial Setup Process' instructions at https://freshrss.github.io/FreshRSS/en/admins/16_OpenID-Connect.html

For details, see:

• https://www.authelia.com/integration/openid-connect/clients/freshrss/
• https://freshrss.github.io/FreshRSS/en/admins/16_OpenID-Connect.html

Type

boolean

Default

false

Declaration

<nps/modules/freshrss>

nps.stacks.freshrss.oidc.userGroup

Users of this group will be able to log in

Type

string

Default

"freshrss_user"

Declaration

<nps/modules/freshrss>