yorick/dotfiles
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
dotfiles/logical/pennyworth.nix

91 lines
2.3 KiB
Nix
Raw Normal View History

new server
2016-04-14 14:02:16 +02:00
# Edit this configuration file to define what should be installed on
# your system. Help is available in the configuration.nix(5) man page
# and in the NixOS manual (accessible by running nixos-help).
{ config, pkgs, lib, ... }:
{
imports = [
reorganize
2018-03-11 19:21:08 +01:00
<yori-nix/physical/kassala.nix>
<yori-nix/roles/server.nix>
../modules/muflax-blog.nix
new server
2016-04-14 14:02:16 +02:00
];
system.stateVersion = "16.03";
split off functionality into roles
2017-02-02 16:58:48 +01:00
update for 18.03
2018-03-11 18:28:25 +01:00
services.nginx.enable = true;
services.yorick = {
move pub.yori.cc to pennyworth
2018-11-20 22:28:58 +01:00
public = { enable = true; vhost = "pub.yori.cc"; };
update for 18.03
2018-03-11 18:28:25 +01:00
website = { enable = true; vhost = "yorickvanpelt.nl"; };
mail = {
enable = true;
mainUser = "yorick";
reorganize
2018-03-11 19:21:08 +01:00
users.yorick = {
password = (import <yori-nix/secrets.nix>).yorick_mailPassword;
domains = ["yori.cc" "yorickvanpelt.nl"];
update for 18.03
2018-03-11 18:28:25 +01:00
};
};
xmpp = {
update pennyworth, move git
2018-05-25 00:27:43 +02:00
enable = false;
update for 18.03
2018-03-11 18:28:25 +01:00
vhost = "yori.cc";
admins = [ "yorick@yori.cc" ];
};
};
services.nginx.virtualHosts."yori.cc" = {
add tmp pad hosting
2017-01-30 17:41:54 +01:00
enableACME = true;
forceSSL = true;
update for 18.03
2018-03-11 18:28:25 +01:00
globalRedirect = "yorickvanpelt.nl";
add tmp pad hosting
2017-01-30 17:41:54 +01:00
};
add tor client + hidden ssh service on pennyworth
2016-04-21 22:45:06 +02:00
add XMPP using prosody
2016-04-22 19:12:59 +02:00
Temporarily host fmap/muflax65ngodyewp.onion
2016-04-29 01:07:06 +02:00
services.muflax-blog = {
enable = true;
web-server = {
port = 9001;
};
hidden-service = {
hostname = "muflax65ngodyewp.onion";
add key deployment, fix pennyworth
2018-03-11 23:17:55 +01:00
private_key = "/root/keys/http.muflax.key";
Temporarily host fmap/muflax65ngodyewp.onion
2016-04-29 01:07:06 +02:00
};
};
update pennyworth, move git
2018-05-25 00:27:43 +02:00
users.extraUsers.git = {
createHome = true;
home = config.services.gitea.stateDir; extraGroups = [ "git" ]; useDefaultShell = true;};
services.gitea = {
enable = true;
user = "git";
database.user = "root";
database.name = "gogs";
#dump.enable = true; TODO: backups
domain = "git.yori.cc";
rootUrl = "https://git.yori.cc/";
httpAddress = "localhost";
cookieSecure = true;
extraConfig = ''
[service]
REGISTER_EMAIL_CONFIRM = false
ENABLE_NOTIFY_MAIL = false
DISABLE_REGISTRATION = true
REQUIRE_SIGNIN_VIEW = false
[picture]
DISABLE_GRAVATAR = false
[mailer]
ENABLED = false
AVATAR_UPLOAD_PATH = ${config.services.gitea.stateDir}/data/avatars
'';
};
services.nginx.virtualHosts."git.yori.cc" = {
forceSSL = true;
enableACME = true;
locations."/" = {
proxyPass = "http://127.0.0.1:${toString config.services.gitea.httpPort}";
extraConfig = ''
proxy_buffering off;
'';
};
};
add key deployment, fix pennyworth
2018-03-11 23:17:55 +01:00
deployment.keyys = [ <yori-nix/keys/http.muflax.key> ];
new server
2016-04-14 14:02:16 +02:00
}
Reference in a new issue Copy permalink