diff options
Diffstat (limited to 'nixos')
| -rw-r--r-- | nixos/configuration.nix | 48 |
1 files changed, 35 insertions, 13 deletions
diff --git a/nixos/configuration.nix b/nixos/configuration.nix index 96013b4..74f5ac0 100644 --- a/nixos/configuration.nix +++ b/nixos/configuration.nix @@ -5,25 +5,25 @@ { config, pkgs, ... }: { - # Automatic Upgrades - system.autoUpgrade.enable = true; - system.autoUpgrade.allowReboot = true; - + # HARDWARE SCAN RESULTS imports = - [ # Include the results of the hardware scan. + [ /etc/nixos/hardware-configuration.nix ]; # SYS PACKAGES environment.systemPackages = [pkgs.vim pkgs.openssl pkgs.mc pkgs.highlight]; + # AUTOMATIC uPGRADES + system.autoUpgrade.enable = true; + system.autoUpgrade.allowReboot = true; + # SSH services.openssh.enable = true; services.openssh.permitRootLogin = "yes"; - + services.openssh.passwordAuthentication = false; users.extraUsers.root.openssh.authorizedKeys.keys = [ "ssh-rsa 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 Miguel_User@DESKTOP-4NH8M69" ]; - # XMPP services.ejabberd.enable = true; services.ejabberd.configFile = "/etc/ejabberd.yaml"; @@ -56,7 +56,7 @@ $highlight_ext{'md'} = 'markdown'; $highlight_ext{'lua'} = 'lua'; $highlight_ext{'modinfo'} = 'xml'; - push @stylesheets, "/highlight.css"; + push @stylesheets, "https://comet.softwarefools.com/highlight.css"; ''; # CERTS @@ -65,16 +65,38 @@ # NGINX services.nginx.enable = true; + services.nginx.appendHttpConfig = "server_names_hash_bucket_size 64;"; + + services.nginx.virtualHosts."comet.softwarefools.com" = { + forceSSL = true; + enableACME = true; + root = "/var/www/comet.softwarefools.com"; + }; + # DOKUWIKI + services.dokuwiki."dokuwiki.softwarefools.com" = { + enable = true; + nginx = { + forceSSL = true; + enableACME = true; + }; + }; + services.nginx.virtualHosts."dokuwiki.softwarefools.com" = { + forceSSL = true; + enableACME = true; + root = "/var/www/dokuwiki.softwarefools.com"; + }; + + # GITWEB services.nginx.gitweb.enable = true; services.nginx.gitweb.group = "gitolite"; - services.nginx.gitweb.virtualHost = "comet.softwarefools.com"; + services.nginx.gitweb.virtualHost = "gitweb.softwarefools.com"; + services.nginx.gitweb.location = ""; - services.nginx.virtualHosts."comet.softwarefools.com" = { + services.nginx.virtualHosts."gitweb.softwarefools.com" = { forceSSL = true; enableACME = true; - root = "/var/www/comet.softwarefools.com"; - locations."/gitweb/static/" = { + locations."/static/" = { extraConfig = "expires 5m;"; }; }; @@ -88,7 +110,7 @@ # Define on which hard drive you want to install Grub. boot.loader.grub.device = "/dev/sda"; # or "nodev" for efi only - networking.hostName = "comet.softwarefools.com"; # Define your hostname. + networking.hostName = "comet"; # Define your hostname. # networking.wireless.enable = true; # Enables wireless support via wpa_supplicant. # The global useDHCP flag is deprecated, therefore explicitly set to false here. |