chore: friendship ended with cas, now keycloak is our best friend

Note that the login.tvl.fyi WWW configuration is still kind of hanging around until we've settled where Keycloak lives. Change-Id: Iaca4e394a7371cafa3716ca66ef09c4eca5b1520 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4626 Autosubmit: tazjin <mail@tazj.in> Tested-by: BuildkiteCI Reviewed-by: lukegb <lukegb@tvl.fyi>
2021-12-26 02:00:24 +03:00 · 2021-12-26 02:00:24 +03:00 · 28a80e0251
commit 28a80e0251
parent 738cca62c1
37 changed files with 1 additions and 1785 deletions
--- a/ops/modules/tvl-sso/default.nix
+++ b/ops/modules/tvl-sso/default.nix
@ -1,28 +0,0 @@
-# Configures an Apereo CAS instance for TVL SSO
-{ depot, ... }:
-
-let
-  inherit (depot.third_party) apereo-cas;
-in {
-  config = {
-    environment.systemPackages = [ apereo-cas ];
-    systemd.services.apereo-cas = {
-      description = "Apereo CAS Single Sign On server";
-      wantedBy = [ "multi-user.target" ];
-      after = [ "network.target" ];
-      environment.JDK_JAVA_OPTIONS = "-Xmx512M -Xms512M";
-      serviceConfig = {
-        User = "apereo-cas";
-        Group = "apereo-cas";
-        ExecStart = "${apereo-cas}/bin/cas";
-        EnvironmentFile = "/etc/cas/secrets";
-        Restart = "always";
-      };
-    };
-    users.users.apereo-cas = {
-      isSystemUser = true;
-      group = "apereo-cas";
-    };
-    users.groups.apereo-cas = {};
-  };
-}