about summary refs log tree commit diff
path: root/nix/hosts/corrino/www/emile.space.nix
blob: c39ca318d9154d13340b9ceb51617da5333003c5 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
{
  services.nginx.virtualHosts."emile.space" = {
    forceSSL = true;
    enableACME = true;

    # kTLS = true;

    locations = {
      "/" = {
        root = "/var/www/emile.space";
        extraConfig = ''
          add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
        ''; 
      };

      "/@hanemile".extraConfig = ''
        return 301 https://social.emile.space/@hanemile;
      '';

      #"/.well-known" = {
      #  root = "/var/www/emile.space";
      #  extraConfig = ''
      #    autoindex on;
      #  '';
      #};

      ## I ran a matrix homeserver for some time, then stopped, but the other
      ## homeserver don't know and don't stop sending me requests (5e5 a day or
      ## so).
      #"/.well-known/matrix/server".extraConfig = ''
      #  return 410;
      #'';
    };
  };

  # services.stargazer = {
  #   enable = true;
  #   user = "stargazer";
  #   group = "stargazer";

  #   certLifetime = "1m";
  #   store = /var/lib/gemini/certs;

  #   genCerts = true;
  #   regenCerts = true;
  #   responseTimeout = 0;
  #   requestTimeout = 5;

  #   routes = [
  #     {
  #       route = "emile.space";
  #       root = "/srv/gemini/emile.space";
  #     }
  #   ];

  #   listen = [ "0.0.0.0" "[2002:a00:1::]" ];

  #   ipLogPartial = false;
  #   ipLog = false;
  #   connectionLogging = false;

  #   certOrg = "emile.space";
  # };
}