From 75e6f7ee169584067ab6161aef074495907a7d9d Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Sat, 4 Jan 2025 07:19:39 -0600
Subject: [PATCH] home-assistant: Add trusted user for Kitchen kiosk

The Raspberry Pi in the kitchen now has Firefox installed so we can use
it to control Home Assistant.  By listing its IP address as a trusted
network, and assigning it a trusted user, it can access the Home
Assistant UI without anyone having to type a password.  This is
particularly important since there's no keyboard (not even an on-screen
virtual one).

Moving the `trusted_networks` auth provider _before_ the `homeassistant`
provider changes the login screen to show a "log in as ..." dialog by
default on trusted devices.  It does not affect other devices at all,
but it does make the initial login a bit easier on kiosks.
---
 home-assistant/configuration.yaml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/home-assistant/configuration.yaml b/home-assistant/configuration.yaml
index e1cdd75..e802a7f 100644
--- a/home-assistant/configuration.yaml
+++ b/home-assistant/configuration.yaml
@@ -39,13 +39,16 @@ recorder:
 
 homeassistant:
   auth_providers:
-  - type: homeassistant
   - type: trusted_networks
     trusted_networks:
     - 172.31.1.81/32
+    - 172.31.1.244/32
     trusted_users:
       172.31.1.81:
       - 03a8b3528f1145ab908e20ed5687d893
+      172.31.1.244:
+      - 03a8b3528f1145ab908e20ed5687d893
+  - type: homeassistant
     allow_bypass_login: true
   whitelist_external_dirs:
   - /config