wiro.world / dotfiles
yep, more dotfiles
fork atom

server: add headscale

wiro.world 36cc778f d9e14e07

verified
options
unified split
Changed files
+38 -4
nixos
profiles
server.nix
+38 -4
nixos/profiles/server.nix 
···

       
28

       
28

       
 

       
  tangled-spindle-port = 3003;


     

       
29

       
29

       
 

       
  tangled-spindle-hostname = "spindle.wiro.world";


     

       
30

       
30

       
 

       



     

       

       
31

       
+

       
  thelounge-port = 3004;


     

       

       
32

       
+

       
  thelounge-hostname = "lounge.wiro.world";


     

       

       
33

       
+

       



     

       

       
34

       
+

       
  headscale-port = 3005;


     

       

       
35

       
+

       
  headscale-hostname = "headscale.wiro.world";


     

       

       
36

       
+

       



     

       
31

       
37

       
 

       
  grafana-port = 9000;


     

       
32

       
38

       
 

       
  grafana-hostname = "console.wiro.world";


     

       
33

       
39

       
 

       
  prometheus-port = 9001;


     

       
34

       
40

       
 

       
  prometheus-node-exporter-port = 9002;


     

       
35

       

       
-

       



     

       
36

       

       
-

       
  thelounge-port = 3004;


     

       
37

       

       
-

       
  thelounge-hostname = "lounge.wiro.world";


     

       
38

       
41

       
 

       
in


     

       
39

       
42

       
 

       
{


     

       
40

       
43

       
 

       
  imports = [


     
···

       
115

       
118

       
 

       



     

       
116

       
119

       
 

       
    services.caddy = {


     

       
117

       
120

       
 

       
      enable = true;


     

       
118

       

       
-

       
      package = pkgs.caddy;


     

       

       
121

       
+

       
      # TODO: add caddy tailscale plugin


     

       

       
122

       
+

       
      # package = pkgs.caddy.withPlugins {


     

       

       
123

       
+

       
      #   plugins = [ "github.com/tailscale/caddy-tailscale" ];


     

       

       
124

       
+

       
      #   hash = "sha256-xxx";


     

       

       
125

       
+

       
      # };


     

       
119

       
126

       
 

       



     

       
120

       
127

       
 

       
      globalConfig = ''


     

       
121

       
128

       
 

       
        metrics { per_host }


     
···

       
148

       
155

       
 

       



     

       
149

       
156

       
 

       
      virtualHosts.${thelounge-hostname}.extraConfig = ''


     

       
150

       
157

       
 

       
        reverse_proxy http://localhost:${toString thelounge-port}


     

       

       
158

       
+

       
      '';


     

       

       
159

       
+

       



     

       

       
160

       
+

       
      virtualHosts.${headscale-hostname}.extraConfig = ''


     

       

       
161

       
+

       
        reverse_proxy http://localhost:${toString headscale-port}


     

       
151

       
162

       
 

       
      '';


     

       
152

       
163

       
 

       
    };


     

       
153

       
164

       
 

       



     
···

       
220

       
231

       
 

       
      };


     

       
221

       
232

       
 

       
    };


     

       
222

       
233

       
 

       



     

       

       
234

       
+

       
    services.headscale = {


     

       

       
235

       
+

       
      enable = true;


     

       

       
236

       
+

       



     

       

       
237

       
+

       
      port = headscale-port;


     

       

       
238

       
+

       
      settings = {


     

       

       
239

       
+

       
        server_url = "https://${headscale-hostname}:443";


     

       

       
240

       
+

       
        # metrics_listen_addr = "127.0.0.1:${headscale-port-metrics}";


     

       

       
241

       
+

       



     

       

       
242

       
+

       
        # disable TLS


     

       

       
243

       
+

       
        tls_cert_path = null;


     

       

       
244

       
+

       
        tls_key_path = null;


     

       

       
245

       
+

       



     

       

       
246

       
+

       
        dns = {


     

       

       
247

       
+

       
          magic_dns = true;


     

       

       
248

       
+

       
          # TODO: headnet? portal? keep short?


     

       

       
249

       
+

       
          base_domain = "p.wiro.world";


     

       

       
250

       
+

       
        };


     

       

       
251

       
+

       



     

       

       
252

       
+

       
        oidc = { };


     

       

       
253

       
+

       
      };


     

       

       
254

       
+

       
    };


     

       

       
255

       
+

       



     

       

       
256

       
+

       
    # port used is 6567


     

       
223

       
257

       
 

       
    services.mindustry-server = {


     

       
224

       
258

       
 

       
      enable = true;


     

       
225

       
259

       
 

       
      package = upkgs.mindustry-server;