diff options
Diffstat (limited to 'machines/nixos/x86_64-linux/do-rproxy/profiles/caddy.nix')
| -rw-r--r-- | machines/nixos/x86_64-linux/do-rproxy/profiles/caddy.nix | 72 |
1 files changed, 0 insertions, 72 deletions
diff --git a/machines/nixos/x86_64-linux/do-rproxy/profiles/caddy.nix b/machines/nixos/x86_64-linux/do-rproxy/profiles/caddy.nix deleted file mode 100644 index c39a1ec..0000000 --- a/machines/nixos/x86_64-linux/do-rproxy/profiles/caddy.nix +++ /dev/null @@ -1,72 +0,0 @@ -{ config, ... }: -{ - networking.firewall.allowedTCPPorts = [ - 80 - 443 - ]; - - security.acme = { - acceptTerms = true; - defaults.email = "franck@fcuny.net"; - certs = { - "code.fcuny.net" = { - domain = "code.fcuny.net"; - dnsProvider = "cloudflare"; - dnsResolver = "1.1.1.1"; - reloadServices = [ "caddy.service" ]; - credentialFiles.CF_DNS_API_TOKEN_FILE = config.age.secrets."cloudflare-caddy".path; - }; - "go.fcuny.net" = { - domain = "go.fcuny.net"; - dnsProvider = "cloudflare"; - dnsResolver = "1.1.1.1"; - reloadServices = [ "caddy.service" ]; - credentialFiles.CF_DNS_API_TOKEN_FILE = config.age.secrets."cloudflare-caddy".path; - }; - "id.fcuny.net" = { - domain = "id.fcuny.net"; - dnsProvider = "cloudflare"; - dnsResolver = "1.1.1.1"; - reloadServices = [ "caddy.service" ]; - credentialFiles.CF_DNS_API_TOKEN_FILE = config.age.secrets."cloudflare-caddy".path; - }; - }; - }; - - services.caddy = { - enable = true; - email = "franck@fcuny.net"; - globalConfig = '' - metrics { - per_host - } - admin :2019 { - origins 127.0.0.1 10.100.0.0/24 - } - ''; - virtualHosts = { - forgejo = { - hostName = "code.fcuny.net"; - useACMEHost = "code.fcuny.net"; - extraConfig = '' - respond /metrics 403 - reverse_proxy 10.100.0.40:3000 - ''; - }; - go = { - hostName = "go.fcuny.net"; - useACMEHost = "go.fcuny.net"; - extraConfig = '' - reverse_proxy 10.100.0.40:8070 - ''; - }; - auth = { - hostName = "id.fcuny.net"; - useACMEHost = "id.fcuny.net"; - extraConfig = '' - reverse_proxy 10.100.0.40:8080 - ''; - }; - }; - }; -} |