nathan/nixpkgs
1
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2026-06-05 21:03:40 +00:00
Code Issues Packages Projects Releases Wiki Activity

nixos/warpgate: add options for Kubernetes listener

Browse Source 
(cherry picked from commit ee57154a67)
This commit is contained in:
Lemon Lam
2026-03-07 23:34:56 +08:00
parent 8232c5e995
commit 03e39b1d21
1 changed files with 32 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

32
nixos/modules/services/security/warpgate.nix
View File

@@ -282,6 +282,38 @@ in
type = str;
};
};
kubernetes = {
enable = mkOption {
description = "Whether to enable Kubernetes listener.";
default = false;
type = bool;
};
listen = mkOption {
description = "Listen endpoint of Kubernetes listener.";
default = "[::]:8443";
type = str;
};
external_port = mkOption {
description = "The Kubernetes listener is reachable via this port externally.";
default = null;
type = nullOr str;
};
certificate = mkOption {
description = "Path to Kubernetes listener certificate.";
default = "/var/lib/warpgate/tls.certificate.pem";
type = str;
};
key = mkOption {
description = "Path to Kubernetes listener private key.";
default = "/var/lib/warpgate/tls.key.pem";
type = str;
};
session_max_age = mkOption {
description = "How long until a logged in session expires.";
default = "30m";
type = str;
};
};
log = {
format = mkOption {
description = "The format Warpgate emits logs in.";