services/website: init
This commit is contained in:
parent
f35d104f84
commit
93279eb6e6
GPG key ID:
6500251E087653C9
4 changed files with 27 additions and 1 deletions
|
|
@ -1,4 +1,4 @@
|
|||
{ config, inputs, ... }: {
|
||||
{ config, ... }: {
|
||||
networking.firewall.allowedTCPPorts = [ 80 443 ];
|
||||
security.acme = {
|
||||
acceptTerms = true;
|
||||
|
|
|
|||
24
modules/services/website.nix
Normal file
24
modules/services/website.nix
Normal file
|
|
@ -0,0 +1,24 @@
|
|||
{ inputs, ... }: {
|
||||
services.nginx.virtualHosts = {
|
||||
"lava.moe" = {
|
||||
useACMEHost = "lava.moe";
|
||||
forceSSL = true;
|
||||
root = inputs.website.outPath;
|
||||
};
|
||||
"cdn.lava.moe" = {
|
||||
useACMEHost = "lava.moe";
|
||||
forceSSL = true;
|
||||
root = "/persist/cdn";
|
||||
};
|
||||
"_" = {
|
||||
default = true;
|
||||
addSSL = true;
|
||||
# TODO generate this somewhere
|
||||
sslCertificate = "/persist/fakeCerts/fake.crt";
|
||||
sslCertificateKey = "/persist/fakeCerts/fake.key";
|
||||
extraConfig = ''
|
||||
return 444;
|
||||
'';
|
||||
};
|
||||
};
|
||||
}
|
||||
Loading…
Add table
Add a link
Reference in a new issue