bchmnn/nix
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(APPA): add nextcloud

Browse source
This commit is contained in:
Jacob Bachmann 2024-09-17 16:12:42 +02:00
parent 8a3823f7df
commit aaf6cefc09
Signed by: bchmnn
GPG key ID: 732A612DAD28067D
6 changed files with 43 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

4
hosts/APPA/services/adguard-home.nix
View file

@ -42,6 +42,10 @@
domain = config.services.gitea.settings.server.DOMAIN; domain = config.services.gitea.settings.server.DOMAIN;
answer = "192.168.2.40"; answer = "192.168.2.40";
} }
{
domain = config.services.nextcloud.hostName;
answer = "192.168.2.40";
}
{ {
domain = "anki.dryb.org"; domain = "anki.dryb.org";
answer = "192.168.2.40"; answer = "192.168.2.40";

1
hosts/APPA/services/default.nix
View file

@ -6,6 +6,7 @@
./ddclient.nix ./ddclient.nix
./gitea.nix ./gitea.nix
./homepage-dashboard.nix ./homepage-dashboard.nix
./nextcloud.nix
./nginx.nix ./nginx.nix
./postgresql.nix ./postgresql.nix
./vaultwarden.nix ./vaultwarden.nix

24
hosts/APPA/services/nextcloud.nix Normal file
View file

@ -0,0 +1,24 @@
{ config, ... }:
{
age.secrets.passwords-gitea-db = {
file = ../../../secrets/passwords/gitea/db.age;
owner = config.users.users.nextcloud.name;
group = config.users.groups.nextcloud.name;
};
services.nextcloud = {
enable = true;
https = true;
hostName = "nextcloud.dryb.org";
database.createLocally = true;
config = {
adminuser = "admin";
adminpassFile = config.age.secrets.passwords-gitea-db.path;
};
autoUpdateApps = {
enable = true;
};
};
}

4
hosts/APPA/services/nginx.nix
View file

@ -18,6 +18,10 @@
proxyPass = "http://127.0.0.1:8001"; proxyPass = "http://127.0.0.1:8001";
}; };
}; };
virtualHosts."${config.services.nextcloud.hostName}" = {
useACMEHost = "dryb.org";
forceSSL = true;
};
virtualHosts."${config.services.gitea.settings.server.DOMAIN}" = { virtualHosts."${config.services.gitea.settings.server.DOMAIN}" = {
useACMEHost = "dryb.org"; useACMEHost = "dryb.org";
forceSSL = true; forceSSL = true;

9
secrets/passwords/nextcloud/admin.age Normal file
View file

@ -0,0 +1,9 @@
age-encryption.org/v1
-> ssh-ed25519 OFTJeQ ZR/HXJbMffa0GONFhLI54XbnMfUa44IBtmc35WfFalE
5k336aLzA40CP1qy1bhpAeOBMf/v8acDsbT3ehJgNH8
-> ssh-ed25519 lfMVeg rNkPlKPIOnU3MX1DRAAqUrVCl2aFCD1LiULqgT94ih0
s1dizDfvjFexbtOaY+8LHT4rASAmna+YtI6sThwY2lo
-> ssh-ed25519 ueRyzQ yXUlKmMDvGQpYHDPax8AOmAupPm1MlOB8O0dWLZlPxI
a/+l6l8f6Bwl6cmfob0lZnBriQ5uGE/zK/JDRwsp3+o
--- k6YDdEeu5493P74E1pt8yOaWrlKxq5KEEfokK+FaFq4
Є€¤u¨nh(§QðyëòÈ5b¥¥Yω<·›ˆ —ä¦éZ„Döwæƒ0 ¶Ì #8¥¨t¸Ò…! ±¯‡

1
secrets/secrets.nix
View file

@ -31,5 +31,6 @@ in
"keys/wireguard/dryborg/presharedkey.age".publicKeys = [ gandalf ] ++ clients; "keys/wireguard/dryborg/presharedkey.age".publicKeys = [ gandalf ] ++ clients;
"passwords/gitea/db.age".publicKeys = users ++ [ APPA ]; "passwords/gitea/db.age".publicKeys = users ++ [ APPA ];
"passwords/anki/admin.age".publicKeys = users ++ [ APPA ]; "passwords/anki/admin.age".publicKeys = users ++ [ APPA ];
"passwords/nextcloud/admin.age".publicKeys = users ++ [ APPA ];
"passwords/ddclient/cloudflare.age".publicKeys = users ++ [ APPA ]; "passwords/ddclient/cloudflare.age".publicKeys = users ++ [ APPA ];
} }