From 5ff5cb783aebf9fc2f07b42954f019d32ccea244 Mon Sep 17 00:00:00 2001
From: colin <colin@nixc.us>
Date: Wed, 11 Jun 2025 15:43:08 -0400
Subject: [PATCH] Temporarily disable Gitea OAuth client to fix Authelia
 startup - Comment out Gitea OIDC client and remove CLIENT_SECRET_GITEA from
 stack.production.yml

---
 .../config/configuration.oidc.clients.yml     | 29 ++++++++++---------
 stack.production.yml                          |  6 ++++
 2 files changed, 21 insertions(+), 14 deletions(-)

diff --git a/docker/authelia/config/configuration.oidc.clients.yml b/docker/authelia/config/configuration.oidc.clients.yml
index 7503702..e23876a 100644
--- a/docker/authelia/config/configuration.oidc.clients.yml
+++ b/docker/authelia/config/configuration.oidc.clients.yml
@@ -59,17 +59,18 @@ identity_providers:
           - https://portainer.{{ env "TRAEFIK_DOMAIN" }}/
         userinfo_signed_response_alg: none
 
-      - client_id: gitea
-        client_name: Gitea
-        client_secret: {{ secret "/run/secrets/CLIENT_SECRET_GITEA" }}
-        public: false
-        authorization_policy: one_factor
-        consent_mode: implicit
-        scopes:
-          - openid
-          - email
-          - profile
-          - groups
-        redirect_uris:
-          - https://git.{{ env "TRAEFIK_DOMAIN" }}/user/oauth2/authelia/callback
-        userinfo_signed_response_alg: none
\ No newline at end of file
+      # TEMPORARILY DISABLED - Gitea OAuth client (missing CLIENT_SECRET_GITEA)
+      # - client_id: gitea
+      #   client_name: Gitea
+      #   client_secret: {{ secret "/run/secrets/CLIENT_SECRET_GITEA" }}
+      #   public: false
+      #   authorization_policy: one_factor
+      #   consent_mode: implicit
+      #   scopes:
+      #     - openid
+      #     - email
+      #     - profile
+      #     - groups
+      #   redirect_uris:
+      #     - https://git.{{ env "TRAEFIK_DOMAIN" }}/user/oauth2/authelia/callback
+      #   userinfo_signed_response_alg: none
\ No newline at end of file
diff --git a/stack.production.yml b/stack.production.yml
index 0a188a9..4c0c26f 100644
--- a/stack.production.yml
+++ b/stack.production.yml
@@ -26,6 +26,11 @@ secrets:
     external: true
   CLIENT_SECRET_HEADADMIN:
     external: true
+  CLIENT_SECRET_PORTAINER:
+    external: true
+  # TEMPORARILY DISABLED - Gitea OAuth (not ready yet)
+  # CLIENT_SECRET_GITEA:
+  #   external: true
 
 networks:
   default:
@@ -66,6 +71,7 @@ services:
       - STORAGE_ENCRYPTION_KEY
       - CLIENT_SECRET_HEADSCALE
       - CLIENT_SECRET_HEADADMIN
+      - CLIENT_SECRET_PORTAINER
     environment: *authelia-env
     dns:
       - 1.1.1.1 # Cloudflare