ptr.pet / ark
nix machine / user configurations
fork atom

feat: enable quic / ktls for rest of services

ptr.pet 93fa5e56 e7c77815

verified
options
unified split
Changed files
+8
hosts
wolumonde
modules
forgejo.nix
hedgedoc.nix
limbusart.nix
+2
hosts/wolumonde/modules/forgejo.nix 
···

       
27

       
27

       
 

       
  services.nginx.virtualHosts."git.gaze.systems" = {


     

       
28

       
28

       
 

       
    useACMEHost = "gaze.systems";


     

       
29

       
29

       
 

       
    forceSSL = true;


     

       

       
30

       
+

       
    quic = true;


     

       

       
31

       
+

       
    kTLS = true;


     

       
30

       
32

       
 

       
    locations."/" = {


     

       
31

       
33

       
 

       
      extraConfig = ''


     

       
32

       
34

       
 

       
        client_max_body_size 1000m;
+2
hosts/wolumonde/modules/hedgedoc.nix 
···

       
16

       
16

       
 

       
  services.nginx.virtualHosts."doc.gaze.systems" = {


     

       
17

       
17

       
 

       
    useACMEHost = "gaze.systems";


     

       
18

       
18

       
 

       
    forceSSL = true;


     

       

       
19

       
+

       
    quic = true;


     

       

       
20

       
+

       
    kTLS = true;


     

       
19

       
21

       
 

       
    locations."/".proxyPass = "http://${config.services.hedgedoc.settings.host}:${toString config.services.hedgedoc.settings.port}";


     

       
20

       
22

       
 

       
  };


     

       
21

       
23

       
 

       
}
+4
hosts/wolumonde/modules/limbusart.nix 
···

       
36

       
36

       
 

       
  services.nginx.virtualHosts."pmart.gaze.systems" = {


     

       
37

       
37

       
 

       
    useACMEHost = "gaze.systems";


     

       
38

       
38

       
 

       
    forceSSL = true;


     

       

       
39

       
+

       
    quic = true;


     

       

       
40

       
+

       
    kTLS = true;


     

       
39

       
41

       
 

       
    locations."/".proxyPass = "http://localhost:3000";


     

       
40

       
42

       
 

       
  };


     

       
41

       
43

       
 

       
  # redirects


     

       
42

       
44

       
 

       
  services.nginx.virtualHosts."limbus.gaze.systems" = {


     

       
43

       
45

       
 

       
    useACMEHost = "gaze.systems";


     

       
44

       
46

       
 

       
    forceSSL = true;


     

       

       
47

       
+

       
    quic = true;


     

       

       
48

       
+

       
    kTLS = true;


     

       
45

       
49

       
 

       
    globalRedirect = "pmart.gaze.systems";


     

       
46

       
50

       
 

       
  };


     

       
47

       
51

       
 

       
}