feat: added searXNG to Ceres

2025-06-16 18:15:13 -05:00 · 2025-03-08 03:17:16 -06:00 · 2025-03-08 03:17:16 -06:00 · 4e4bbd1f43
commit 4e4bbd1f43
parent d2d7ec00a2
5 changed files with 15 additions and 19 deletions
--- a/modules/nixos/default.nix
+++ b/modules/nixos/default.nix
@ -50,6 +50,7 @@ in
          website
          postgresql
          samba
+          searx
          vaultwarden
          forgejo
          wayland
--- a/modules/nixos/services/searx/default.nix
+++ b/modules/nixos/services/searx/default.nix
@ -149,28 +149,14 @@ in
            virtualHosts = {
              "${host}" = {
                extraConfig = ''
-                  # Handle all requests at root
-                  handle /* {
-                    # Using unix socket for uwsgi
-                    reverse_proxy unix/${config.services.searx.uwsgiConfig.socket} {
-                      transport unix
-                      transport protocol uwsgi
-                    }
-                  }
+                  redir /.well-known/carddav /remote.php/dav/ 301
+                  redir /.well-known/caldav /remote.php/dav/ 301
+
+                  reverse_proxy ${localhost}:${toString service.ports.port0}

-                  # TLS configuration
                  tls ${service.ssl.cert} ${service.ssl.key}

-                  # Compression (equivalent to nginx's gzip settings)
                  encode zstd gzip
-
-                  # Common security headers (similar to nginx recommended settings)
-                  header {
-                    Strict-Transport-Security "max-age=31536000;"
-                    X-Content-Type-Options "nosniff"
-                    X-Frame-Options "DENY"
-                    Referrer-Policy "no-referrer-when-downgrade"
-                  }
                '';
              };
            };