commit a9665d1d121da0b6f39cca01540c8029ed827d79 · wiro.world/dotfiles

+3 -3

flake.lock

···

       1090
       1090
        
           },

     

       1091
       1091
        
           "unixpkgs": {

     

       1092
       1092
        
             "locked": {

     

       1093
       1093
       -
               "lastModified": 1759036355,

     

       1094
       1094
       -
               "narHash": "sha256-0m27AKv6ka+q270dw48KflE0LwQYrO7Fm4/2//KCVWg=",

     

       1093
       1093
       +
               "lastModified": 1761373498,

     

       1094
       1094
       +
               "narHash": "sha256-Q/uhWNvd7V7k1H1ZPMy/vkx3F8C13ZcdrKjO7Jv7v0c=",

     

       1095
       1095
        
               "owner": "nixos",

     

       1096
       1096
        
               "repo": "nixpkgs",

     

       1097
       1097
       -
               "rev": "e9f00bd893984bc8ce46c895c3bf7cac95331127",

     

       1097
       1097
       +
               "rev": "6a08e6bb4e46ff7fcbb53d409b253f6bad8a28ce",

     

       1098
       1098
        
               "type": "github"

     

       1099
       1099
        
             },

     

       1100
       1100
        
             "original": {

+15 -5

nixos/profiles/server.nix

···

       1
       1
        
       { self

     

       2
       2
        
       , config

     

       3
       3
       +
       , lib

     

       3
       4
        
       , pkgs

     

       4
       5
        
       , upkgs

     

       5
       6
        
       , ...

     
···

       16
       17
        
         external-ip6 = "2a01:4f8:c2c:76d2::1";

     

       17
       18
        
         external-netmask6 = 64;

     

       18
       19
        
         external-gw6 = "fe80::1";

     

       20
       20
       +
       

     

       21
       21
       +
         # website-port = 3000;

     

       22
       22
       +
         # website-hostname = "wiro.world";

     

       19
       23
        
       

     

       20
       24
        
         pds-port = 3001;

     

       21
       25
        
         pds-hostname = "pds.wiro.world";

     
···

       124
       128
        
       

     

       125
       129
        
           services.caddy = {

     

       126
       130
        
             enable = true;

     

       127
       127
       -
             # TODO: add caddy tailscale plugin

     

       128
       128
       -
             # package = pkgs.caddy.withPlugins {

     

       129
       129
       -
             #   plugins = [ "github.com/tailscale/caddy-tailscale" ];

     

       130
       130
       -
             #   hash = "sha256-xxx";

     

       131
       131
       -
             # };

     

       131
       131
       +
             package = upkgs.caddy.withPlugins {

     

       132
       132
       +
               plugins = [ "github.com/tailscale/caddy-tailscale@v0.0.0-20251016213337-01d084e119cb" ];

     

       133
       133
       +
               hash = "sha256-gDNYWwlQQ0Hbg1/TCf421NYcY3LnYWW248RzyGR2f28=";

     

       134
       134
       +
             };

     

       132
       135
        
       

     

       133
       136
        
             globalConfig = ''

     

       134
       137
        
               metrics { per_host }

     
···

       137
       140
        
                 ask http://localhost:${toString pds-port}/tls-check

     

       138
       141
        
               }

     

       139
       142
        
             '';

     

       143
       143
       +
       

     

       144
       144
       +
             # TODO: add webfinger

     

       145
       145
       +
             # https://willnorris.com/2023/caddy-snippets/#webfinger

     

       146
       146
       +
       

     

       147
       147
       +
             # virtualHosts.${website-hostname}.extraConfig = ''

     

       148
       148
       +
             #   reverse_proxy http://localhost:${toString website-port}

     

       149
       149
       +
             # '';

     

       140
       150
        
       

     

       141
       151
        
             # Grafana has its own auth

     

       142
       152
        
             virtualHosts.${grafana-hostname}.extraConfig = ''