Move most Nginx proxies to the individual services

2024-08-26 13:07:59 -04:00 · 2024-08-26 13:07:59 -04:00 · 1f8156e868
commit 1f8156e868
parent f1d2652c53
16 changed files with 267 additions and 263 deletions
--- a/nixos/server/gitea.nix
+++ b/nixos/server/gitea.nix
@ -1,25 +1,35 @@
-{
-  services.gitea = let
-    secrets = import ../modules/secrets.nix;
-  in {
-    enable = true;
-    settings = {
-      server = {
-        DOMAIN = "git.${secrets.jimDomain}";
-        ROOT_URL = "https://git.${secrets.jimDomain}:443";
-        HTTP_PORT = 3110;
-        SSH_PORT = 2299;
-        START_SSH_SERVER = true;
+let
+  secrets = import ../modules/secrets.nix;
+in {
+  services = {
+    gitea = {
+      enable = true;
+      settings = {
+        server = {
+          DOMAIN = "git.${secrets.jimDomain}";
+          ROOT_URL = "https://git.${secrets.jimDomain}:443";
+          HTTP_PORT = 3110;
+          SSH_PORT = 2299;
+          START_SSH_SERVER = true;
+        };
+        mailer = {
+          ENABLED = true;
+          SMTP_ADDR = "mx.${secrets.jimDomain}";
+          FROM = "Jimbo's Git <noreply@${secrets.jimDomain}>";
+          USER = "noreply@${secrets.jimDomain}";
+          PASSWD = secrets.noreplyPassword;
+          PROTOCOL = "smtps";
+        };
+        service.REGISTER_EMAIL_CONFIRM = true;
      };
-      mailer = {
-        ENABLED = true;
-        SMTP_ADDR = "mx.${secrets.jimDomain}";
-        FROM = "Jimbo's Git <noreply@${secrets.jimDomain}>";
-        USER = "noreply@${secrets.jimDomain}";
-        PASSWD = secrets.noreplyPassword;
-        PROTOCOL = "smtps";
+    };
+    nginx.virtualHosts."git.${secrets.jimDomain}" =  {
+      enableACME = true;
+      forceSSL = true;
+      locations."/" = {
+        proxyPass = "http://127.0.0.1:3110";
+        proxyWebsockets = true;
      };
-      service.REGISTER_EMAIL_CONFIRM = true;
    };
  };
 }