diff options
Diffstat (limited to 'nix/hosts/corrino/www/nix-cache/nix-cache.emile.space.nix')
| -rw-r--r-- | nix/hosts/corrino/www/nix-cache/nix-cache.emile.space.nix | 38 |
1 files changed, 19 insertions, 19 deletions
diff --git a/nix/hosts/corrino/www/nix-cache/nix-cache.emile.space.nix b/nix/hosts/corrino/www/nix-cache/nix-cache.emile.space.nix index c8f7264..cbb6a0d 100644 --- a/nix/hosts/corrino/www/nix-cache/nix-cache.emile.space.nix +++ b/nix/hosts/corrino/www/nix-cache/nix-cache.emile.space.nix @@ -1,18 +1,26 @@ -{ ... }: +{ config, ... }: { services.nginx.virtualHosts."nix-cache.emile.space" = { - forceSSL = false; - enableACME = false; + forceSSL = true; + enableACME = true; + + locations = { + "/" = { + proxyPass = "http://${config.services.harmonia.settings.bind}"; + }; + }; }; - # locations = { - # "/" = { - # root = "/var/www/emile.space"; - # extraConfig = '' - # add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always; - # ''; - # }; - # }; + services.harmonia = { + enable = true; + + # TODO(emile): manage this using age + # signKeyPath = "/var/lib/secrets/harmonia.secret"; + signKeyPath = config.age.secrets.harmonia-signkey.path; + + settings.bind = "[::1]:${toString config.emile.ports.harmonia}"; + }; + # locations."= /" = { # index = "/index.txt"; # }; @@ -47,12 +55,4 @@ # }; # }; - # services.harmonia = { - # enable = true; - - # # TODO(emile): manage this using age - # signKeyPath = "/var/lib/secrets/harmonia.secret"; - - # settings.bind = "[::1]:${toString config.emile.ports.harmonia}"; - # }; } |
