wurzel/fruitbasket
9
1
Fork 0
Code Issues 5 Pull requests Packages Projects Releases Wiki Activity

decisions: init

Browse source
This commit is contained in:
Jonas Gaffke 2024-02-03 20:05:52 +01:00 committed by Rouven Seifert
parent 7e2dc399bb
commit cd10890f1b
Signed by: rouven.seifert
GPG key ID: B95E8FE6B11C4D09
2 changed files with 32 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
flake.nix
View file

@ -90,6 +90,8 @@
./modules/initrd-ssh.nix ./modules/initrd-ssh.nix
./modules/fsrewsp.nix ./modules/fsrewsp.nix
./modules/nightline.nix ./modules/nightline.nix
./modules/decisions.nix
# ./modules/struktur-bot.nix
{ {
nixpkgs.overlays = [ self.overlays.default ]; nixpkgs.overlays = [ self.overlays.default ];
sops.defaultSopsFile = ./secrets/quitte.yaml; sops.defaultSopsFile = ./secrets/quitte.yaml;

30
modules/decisions.nix Normal file
View file

@ -0,0 +1,30 @@
{ config, pkgs, ... }:
let
domain = "decisions.${config.networking.domain}";
in
{
virtualisation.oci-containers = {
backend = "docker";
containers.decicions = {
image = "decisions";
volumes = [
"/var/lib/nextcloud/data/root/files/FSR/protokolle:/protokolle:ro"
];
extraOptions = [ "--network=host" ];
};
};
services.nginx = {
virtualHosts."${domain}" = {
enableACME = true;
forceSSL = true;
locations."/" = {
proxyPass = "http://127.0.0.1:5055";
};
extraConfig = ''
auth_pam "LDAP Authentication Required";
auth_pam_service_name "nginx";
'';
};
};
}