Compare commits
3 Commits
a504cd972b
...
c9d47524f7
Author | SHA1 | Date |
---|---|---|
TEC | c9d47524f7 | |
TEC | c2dc65583c | |
TEC | d4ad6c2961 |
12
flake.lock
12
flake.lock
|
@ -7,11 +7,11 @@
|
||||||
"nixpkgs": "nixpkgs"
|
"nixpkgs": "nixpkgs"
|
||||||
},
|
},
|
||||||
"locked": {
|
"locked": {
|
||||||
"lastModified": 1696775529,
|
"lastModified": 1701216516,
|
||||||
"narHash": "sha256-TYlE4B0ktPtlJJF9IFxTWrEeq+XKG8Ny0gc2FGEAdj0=",
|
"narHash": "sha256-jKSeJn+7hZ1dZdiH1L+NWUGT2i/BGomKAJ54B9kT06Q=",
|
||||||
"owner": "ryantm",
|
"owner": "ryantm",
|
||||||
"repo": "agenix",
|
"repo": "agenix",
|
||||||
"rev": "daf42cb35b2dc614d1551e37f96406e4c4a2d3e4",
|
"rev": "13ac9ac6d68b9a0896e3d43a082947233189e247",
|
||||||
"type": "github"
|
"type": "github"
|
||||||
},
|
},
|
||||||
"original": {
|
"original": {
|
||||||
|
@ -155,11 +155,11 @@
|
||||||
},
|
},
|
||||||
"nixpkgs_2": {
|
"nixpkgs_2": {
|
||||||
"locked": {
|
"locked": {
|
||||||
"lastModified": 1700204040,
|
"lastModified": 1701718080,
|
||||||
"narHash": "sha256-xSVcS5HBYnD3LTer7Y2K8ZQCDCXMa3QUD1MzRjHzuhI=",
|
"narHash": "sha256-6ovz0pG76dE0P170pmmZex1wWcQoeiomUZGggfH9XPs=",
|
||||||
"owner": "NixOS",
|
"owner": "NixOS",
|
||||||
"repo": "nixpkgs",
|
"repo": "nixpkgs",
|
||||||
"rev": "c757e9bd77b16ca2e03c89bf8bc9ecb28e0c06ad",
|
"rev": "2c7f3c0fb7c08a0814627611d9d7d45ab6d75335",
|
||||||
"type": "github"
|
"type": "github"
|
||||||
},
|
},
|
||||||
"original": {
|
"original": {
|
||||||
|
|
11
flake.nix
11
flake.nix
|
@ -24,14 +24,15 @@
|
||||||
|
|
||||||
hosts = {
|
hosts = {
|
||||||
golgi.modules = with modules; [
|
golgi.modules = with modules; [
|
||||||
common
|
|
||||||
admin
|
admin
|
||||||
zsh
|
|
||||||
hardware-hetzner
|
|
||||||
hardened
|
|
||||||
agenix.nixosModules.default
|
agenix.nixosModules.default
|
||||||
forgejo
|
|
||||||
caddy
|
caddy
|
||||||
|
common
|
||||||
|
forgejo
|
||||||
|
hardened
|
||||||
|
hardware-hetzner
|
||||||
|
syncthing
|
||||||
|
zsh
|
||||||
];
|
];
|
||||||
};
|
};
|
||||||
|
|
||||||
|
|
|
@ -1,6 +1,7 @@
|
||||||
{ config, pkgs, ... }:
|
{ config, pkgs, ... }:
|
||||||
|
|
||||||
{
|
{
|
||||||
|
networking.firewall.allowedTCPPorts = [ 22 ];
|
||||||
users.users.admin = {
|
users.users.admin = {
|
||||||
name = "admin";
|
name = "admin";
|
||||||
hashedPassword = "$6$ET8BLqODvw77VOmI$oun2gILUqBr/3WonH2FO1L.myMIM80KeyO5W1GrYhJTo./jk7XcG8B3vEEcbpfx3R9h.sR0VV187/MgnsnouB1";
|
hashedPassword = "$6$ET8BLqODvw77VOmI$oun2gILUqBr/3WonH2FO1L.myMIM80KeyO5W1GrYhJTo./jk7XcG8B3vEEcbpfx3R9h.sR0VV187/MgnsnouB1";
|
||||||
|
|
|
@ -3,8 +3,8 @@
|
||||||
with lib;
|
with lib;
|
||||||
|
|
||||||
{
|
{
|
||||||
networking.firewall.allowedTCPPorts = [ 22 80 443 ];
|
networking.firewall.allowedTCPPorts = [ 80 443 ];
|
||||||
networking.firewall.allowedUDPPortRanges = [ { from=443; to=443; } ];
|
networking.firewall.allowedUDPPorts = [ 443 ];
|
||||||
|
|
||||||
# If I end up wanting to add plugins, see:
|
# If I end up wanting to add plugins, see:
|
||||||
# https://mdleom.com/blog/2021/12/27/caddy-plugins-nixos/
|
# https://mdleom.com/blog/2021/12/27/caddy-plugins-nixos/
|
||||||
|
@ -34,6 +34,10 @@ In future, the following may be set up too:
|
||||||
"
|
"
|
||||||
'';
|
'';
|
||||||
}
|
}
|
||||||
|
(mkIf config.services.syncthing.enable {
|
||||||
|
virtualHosts."syncthing.tecosaur.net".extraConfig =
|
||||||
|
''reverse_proxy ${config.services.syncthing.guiAddress}'';
|
||||||
|
})
|
||||||
(mkIf config.services.gitea.enable {
|
(mkIf config.services.gitea.enable {
|
||||||
virtualHosts."git.tecosaur.net".extraConfig =
|
virtualHosts."git.tecosaur.net".extraConfig =
|
||||||
''
|
''
|
||||||
|
|
|
@ -0,0 +1,22 @@
|
||||||
|
{ config, lib, ... }:
|
||||||
|
|
||||||
|
with lib;
|
||||||
|
|
||||||
|
{
|
||||||
|
services.syncthing = {
|
||||||
|
enable = true;
|
||||||
|
dataDir = "/var/lib/syncthing";
|
||||||
|
guiAddress = "localhost:8384";
|
||||||
|
overrideDevices = true;
|
||||||
|
overrideFolders = true;
|
||||||
|
settings = {
|
||||||
|
gui = {
|
||||||
|
user = "tec";
|
||||||
|
password = "$2a$10$yXPBFhobbJGT3FRNEWmdRO891ZLTF247XQ2fYmJK8dsqzIWLKOPKC";
|
||||||
|
};
|
||||||
|
devices = {
|
||||||
|
"tranquillity" = { id = "VXWXMXK-MWENVPV-PV75JQH-45OP44F-QMPH645-JVWGJB2-C2GKHSV-QARV5A2"; };
|
||||||
|
};
|
||||||
|
};
|
||||||
|
};
|
||||||
|
}
|
Loading…
Reference in New Issue