dotfiles/modules/nixos/homelab/caddy/default.nix

{ flake, ... }:
let
  inherit (flake.config.services) instances;
  serviceCfg = instances.caddy;

  importList =
    let
      content = builtins.readDir ./.;
      dirContent = builtins.filter (n: content.${n} == "directory") (builtins.attrNames content);
    in
    map (name: ./. + "/${name}") dirContent;

in
{
  imports = importList;

  services.caddy = {
    enable = true;
  };

  systemd.tmpfiles.rules = [
    "d /run/secrets/caddy 755 caddy caddy -"
    "d /var/log/caddy 755 caddy caddy -"
  ];

  networking = {
    firewall = {
      allowedTCPPorts = [
        serviceCfg.ports.port0 # 80
        serviceCfg.ports.port1 # 443
      ];
    };
  };
}
test: setting up nas structure 2025-12-08 22:25:13 -06:00			`{ flake, ... }:`
			`let`
			`inherit (flake.config.services) instances;`
test: setting up nas structure 2025-12-09 00:52:21 -06:00			`serviceCfg = instances.caddy;`
test: setting up nas structure 2025-12-08 22:25:13 -06:00
			`importList =`
			`let`
			`content = builtins.readDir ./.;`
			`dirContent = builtins.filter (n: content.${n} == "directory") (builtins.attrNames content);`
			`in`
			`map (name: ./. + "/${name}") dirContent;`

			`in`
			`{`
			`imports = importList;`

			`services.caddy = {`
			`enable = true;`
			`};`

feat: infinitely expansible microvms 2025-12-09 03:46:57 -06:00			`systemd.tmpfiles.rules = [`
test: setting up nas structure 2025-12-08 22:25:13 -06:00			`"d /run/secrets/caddy 755 caddy caddy -"`
			`"d /var/log/caddy 755 caddy caddy -"`
			`];`

			`networking = {`
			`firewall = {`
			`allowedTCPPorts = [`
test: setting up nas structure 2025-12-09 00:52:21 -06:00			`serviceCfg.ports.port0 # 80`
			`serviceCfg.ports.port1 # 443`
test: setting up nas structure 2025-12-08 22:25:13 -06:00			`];`
			`};`
			`};`
			`}`