feat: create KANIDM_A_RECORD

selfprivacy_api/repositories/users/kanidm_user_repository.py

@@ -19,6 +19,7 @@ from selfprivacy_api.repositories.users.exceptions_kanidm import (
     KanidmReturnEmptyResponse,
     KanidmReturnUnknownResponseType,
 )
+from selfprivacy_api.services import KANIDM_A_RECORD
 from selfprivacy_api.utils import get_domain, temporary_env_var
 from selfprivacy_api.utils.redis_pool import RedisPool
 from selfprivacy_api.models.user import UserDataUser, UserDataUserOrigin
@@ -27,8 +28,9 @@ from selfprivacy_api.repositories.users.abstract_user_repository import (
 )
 
 
-KANIDM_URL = "https://127.0.0.1:3013"
 REDIS_TOKEN_KEY = "kanidm:token"
+
+KANIDM_URL = "https://127.0.0.1:3013"
 ADMIN_KANIDM_GROUPS = ["sp.admin"]
 
 redis = RedisPool().get_connection()
@@ -485,7 +487,7 @@ class KanidmUserRepository(AbstractUserRepository):
             raise KanidmReturnEmptyResponse
 
         if token:
-            return f"https://auth.{get_domain()}/ui/reset?token={token}"
+            return f"https://{KANIDM_A_RECORD}.{get_domain()}/ui/reset?token={token}"
 
         raise NoPasswordResetLinkFoundInResponse
 

selfprivacy_api/services/__init__.py

@@ -4,9 +4,8 @@ import logging
 import base64
 import typing
 from typing import List
-from os import path, remove
+from os import path
 from os import makedirs
-from os import listdir
 from os.path import join
 
 from shutil import copyfile, copytree, rmtree
@@ -30,6 +29,7 @@ from selfprivacy_api.utils.block_devices import BlockDevices
 from selfprivacy_api.utils import read_account_uri
 
 CONFIG_STASH_DIR = "/etc/selfprivacy/dump"
+KANIDM_A_RECORD = "auth"
 
 logger = logging.getLogger(__name__)
 
@@ -69,7 +69,7 @@ class ServiceManager(Service):
         dns_records: list[ServiceDnsRecord] = [
             ServiceDnsRecord(
                 type="A",
-                name="auth",
+                name=KANIDM_A_RECORD,
                 content=ip4,
                 ttl=3600,
                 display_name="Record for Kanidm",