22 lines
1.1 KiB
Diff
22 lines
1.1 KiB
Diff
diff --git a/nixos/modules/services/security/kanidm.nix b/nixos/modules/services/security/kanidm.nix
|
|
index a368b6eee2a6e..3f90ad99b7700 100644
|
|
--- a/nixos/modules/services/security/kanidm.nix
|
|
+++ b/nixos/modules/services/security/kanidm.nix
|
|
@@ -502,13 +502,13 @@ in
|
|
};
|
|
|
|
originUrl = mkOption {
|
|
- description = "The origin URL of the service. OAuth2 redirects will only be allowed to sites under this origin. Must end with a slash.";
|
|
+ description = "The redirect URL of the service. These need to exactly match the OAuth2 redirect target";
|
|
type =
|
|
let
|
|
- originStrType = types.strMatching ".*://.*/$";
|
|
+ originStrType = types.strMatching ".*://.*$";
|
|
in
|
|
types.either originStrType (types.nonEmptyListOf originStrType);
|
|
- example = "https://someservice.example.com/";
|
|
+ example = "https://someservice.example.com/auth/login";
|
|
};
|
|
|
|
originLanding = mkOption {
|