75 lines
1.5 KiB
Nix
75 lines
1.5 KiB
Nix
{ config, ... }:
|
|
let
|
|
email = "admin@woach.me";
|
|
in {
|
|
imports = [
|
|
./hardware.nix
|
|
];
|
|
system.stateVersion = "24.11";
|
|
system.timezone = "America/Los_Angeles";
|
|
system.users.bigWheels = [ "pan" ];
|
|
|
|
sops-nix = {
|
|
enable = true;
|
|
keyFile = "/etc/sops/age/keys.txt";
|
|
sopsFile = ./secrets.yaml;
|
|
secrets = {
|
|
pdsEnv = {};
|
|
forgejoPassword = {
|
|
owner = "forgejo";
|
|
};
|
|
};
|
|
};
|
|
|
|
caddy = {
|
|
enable = true;
|
|
adminEmail = email;
|
|
vhosts = {
|
|
"juri.woach.me" = {
|
|
extraConfig = ''
|
|
reverse_proxy :3000
|
|
'';
|
|
serverAliases = [ "*.juri.woach.me" ];
|
|
};
|
|
"winry.woach.me" = {
|
|
extraConfig = ''
|
|
reverse_proxy :${builtins.toString config.forgejo.server.port}
|
|
'';
|
|
};
|
|
"ginko.woach.me" = {
|
|
extraConfig = ''
|
|
reverse_proxy :${builtins.toString config.headscale.server.port}
|
|
'';
|
|
};
|
|
};
|
|
};
|
|
|
|
pds = {
|
|
enable = true;
|
|
hostname = "juri.woach.me";
|
|
adminEmail = email;
|
|
environmentFile = config.sops.secrets.pdsEnv.path;
|
|
};
|
|
|
|
forgejo = {
|
|
enable = true;
|
|
server.domain = "winry.woach.me";
|
|
users.admin = {
|
|
enable = true;
|
|
username = "Julia";
|
|
passwordFile = config.sops.secrets.forgejoPassword.path;
|
|
};
|
|
};
|
|
|
|
headscale = {
|
|
enable = true;
|
|
server.domain = "ginko.woach.me";
|
|
};
|
|
|
|
postgres.enable = true;
|
|
|
|
shell.enabledShells = [ "fish" ];
|
|
shell.defaultShell = "fish";
|
|
|
|
sshd.enable = true;
|
|
}
|