gerg-l/nixos
1
0
Fork 0
mirror of https://github.com/Gerg-L/nixos.git synced 2025-12-10 00:43:56 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

messing with website

Browse source 
locked papermc

added searxng

enabled website
This commit is contained in:
Gerg-L 2023-09-17 16:04:33 -04:00
parent f8c13c04b9
commit 164cdd85a0
Signed by: gerg-l
SSH key fingerprint: SHA256:FPYDHIkvMocr4wdmZXpgpJjsb2Tw6rASs2ISPbOb0KI
8 changed files with 177 additions and 97 deletions
Download patch file Download diff file Expand all files Collapse all files

54
hosts/gerg-desktop/nginx.nix Normal file
View file

@ -0,0 +1,54 @@
_: {
config,
lib,
...
}: {
sops.secrets = lib.mapAttrs (_: v:
{
owner = "nginx";
group = "nginx";
}
// v) {
nixfu_ssl_cert = {};
nixfu_ssl_key = {};
gerg_ssl_key = {};
gerg_ssl_cert = {};
};
services.nginx = {
enable = true;
recommendedGzipSettings = true;
recommendedOptimisation = true;
recommendedProxySettings = true;
recommendedTlsSettings = true;
virtualHosts = {
"nix-fu.com" = {
forceSSL = true;
sslCertificate = config.sops.secrets.nixfu_ssl_cert.path;
sslCertificateKey = config.sops.secrets.nixfu_ssl_key.path;
serverAliases = ["www.nix-fu.com" "nix-fu.com"];
locations."/".return = "301 $scheme://www.github.com/Gerg-L$request_uri";
};
"search.Gerg-L.com" = {
forceSSL = true;
sslCertificate = config.sops.secrets.gerg_ssl_cert.path;
sslCertificateKey = config.sops.secrets.gerg_ssl_key.path;
locations."/".proxyPass = "http://localhost:${toString config.services.searx.settings.server.port}";
};
"git.Gerg-L.com" = {
forceSSL = true;
sslCertificate = config.sops.secrets.gerg_ssl_cert.path;
sslCertificateKey = config.sops.secrets.gerg_ssl_key.path;
locations."/".proxyPass = "http://192.168.1.11:3000";
};
"next.Gerg-L.com" = {
forceSSL = true;
sslCertificate = config.sops.secrets.gerg_ssl_cert.path;
sslCertificateKey = config.sops.secrets.gerg_ssl_key.path;
locations."/".proxyPass = "http://192.168.1.11:80";
};
};
};
networking.firewall = {
allowedTCPPorts = [80 443];
};
}