From 72cd269e26e476be65291f1db2b92a08294187bd Mon Sep 17 00:00:00 2001
From: Nathan <nathanblunkall5@gmail.com>
Date: Wed, 13 May 2026 11:18:53 -0500
Subject: [PATCH] improve security

---
 modules/features/authentik.nix | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/modules/features/authentik.nix b/modules/features/authentik.nix
index 9b30a13..6f9547c 100644
--- a/modules/features/authentik.nix
+++ b/modules/features/authentik.nix
@@ -84,6 +84,7 @@
                 environmentFiles = [ config.sops.templates."authentik.env".path ];
                 labels = {
                     "traefik.enable" = "true";
+                    "traefik.docker.network" = "docker-main";
                     "traefik.http.routers.${name}.entrypoints" = "websecure,localsecure";
                     "traefik.http.routers.${name}.rule" = "Host(`${subdomain}.esotericbytes.com`)";
                     "traefik.http.routers.${name}.service" = "${name}";
@@ -103,8 +104,7 @@
                         "/etc/Authentik/data:/data:rw"
                 ];
                 ports = [
-                    #"127.0.0.1:${builtins.toString hostPort}:9000/tcp"
-                    "192.168.101.11:${builtins.toString hostPort}:9000/tcp"
+                    "127.0.0.1:${builtins.toString hostPort}:9000/tcp"
 #"9443:9443/tcp"
                 ];
                 cmd = [ "server" ];