aciceri/nixfleet
1
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions

Use aciceri.dev domains for VPNs too
Some checks failed
EVAL aarch64-linux.sisko
Details
BUILD aarch64-linux.sisko
Details
UPLOAD aarch64-linux.sisko
Details
DOWNLOAD aarch64-linux.sisko
Details
CACHIX aarch64-linux.sisko
Details
ATTIC aarch64-linux.sisko
Details
/ test (push) Successful in 2m9s
Details

Browse source
This commit is contained in:
Andrea Ciceri 2025-03-14 15:56:29 +01:00
parent a8b1fed384
commit 9677a6ca77
Signed by: aciceri
SSH key fingerprint: SHA256:/AagBweyV4Hlfg9u092n8hbHwD5fcB6A3qhDiDA65Rg
11 changed files with 62 additions and 71 deletions
Download patch file Download diff file Expand all files Collapse all files

17
modules/nginx-base/default.nix
View file

@ -1,7 +1,23 @@
{ config, ... }:
{
security.acme = {
acceptTerms = true;
defaults.email = "andrea.ciceri@autistici.org";
certs = {
"aciceri.dev" = {
reloadServices = [ "nginx.service" ];
domain = "aciceri.dev";
extraDomainNames = [
"*.sisko.zt.aciceri.dev"
"*.sisko.wg.aciceri.dev"
];
dnsProvider = "cloudflare";
# dnsResolver = "1.1.1.1:53";
dnsPropagationCheck = true;
group = config.services.nginx.group;
environmentFile = config.age.secrets.cloudflare-dyndns-api-token.path;
};
};
};
networking.firewall.allowedTCPPorts = [
@ -11,6 +27,7 @@
services.nginx = {
enable = true;
statusPage = true;
recommendedGzipSettings = true;
recommendedOptimisation = true;
recommendedProxySettings = true;