felixalb/nixos-config
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

defiant/vaultwarden: unpublish

Browse Source
This commit is contained in:
Felix Albrigtsen
2026-03-29 15:52:03 +02:00
parent d117a6422c
commit d3776db311
3 changed files with 21 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
hosts/defiant/services/nginx.nix
View File

@@ -31,6 +31,15 @@ in {
defaults.email = "felix@albrigtsen.it";
};
# security.acme.certs."domainname" = {
# dnsProvider = "domeneshop";
# environmentFile = config.sops.secrets."domeneshop/acme".path;
# webroot = null;
# }
sops.secrets."domeneshop/acme" = {
group = "nginx";
};
# Publicly exposed services:
services.nginx.virtualHosts = let

12
hosts/defiant/services/vaultwarden.nix
View File

@@ -1,7 +1,7 @@
{ config, pkgs, lib, ... }:
let
cfg = config.services.vaultwarden;
domain = "pw.feal.no";
domain = "pw.home.feal.no";
address = "127.0.1.2";
port = 3011;
wsPort = 3012;
@@ -43,13 +43,17 @@ in {
services.postgresqlBackup.databases = [ "vaultwarden" ];
security.acme.certs."pw.home.feal.no" = {
dnsProvider = "domeneshop";
environmentFile = config.sops.secrets."domeneshop/acme".path;
webroot = null;
};
services.nginx.virtualHosts."${domain}" = {
forceSSL = true;
enableACME = true;
listen = [
{ addr = "192.168.10.175"; port = 43443; ssl = true; }
{ addr = "192.168.10.175"; port = 43080; ssl = false; }
{ addr = "192.168.10.175"; port = 443; ssl = true; }
{ addr = "192.168.10.175"; port = 80; ssl = false; }
];
extraConfig = ''