upRootNutrition/dotfiles
1
0
Fork 0
mirror of https://gitlab.com/upRootNutrition/dotfiles.git synced 2025-08-08 21:04:38 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: glance test

Browse source
This commit is contained in:
Nick 2025-07-03 20:56:06 -05:00
parent 10fa322a83
commit 76aa17f2fb
3 changed files with 16 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

14
modules/nixos/services/glance/default.nix
View file

@ -30,8 +30,18 @@ in
virtualHosts = { virtualHosts = {
"${configHelpers.host}" = { "${configHelpers.host}" = {
extraConfig = '' extraConfig = ''
reverse_proxy ${configHelpers.localhost}:${toString configHelpers.service.ports.port0} @allowed_ips {
remote_ip ${mars.wireguard.ip0} ${deimos.wireguard.ip0}
}
handle @allowed_ips {
redir /.well-known/carddav /remote.php/dav/ 301
redir /.well-known/caldav /remote.php/dav/ 301
reverse_proxy ${ceres.wireguard.ip0}:${toString configHelpers.service.ports.port0}
}
handle {
respond "Access Denied" 403
}
tls ${configHelpers.service.ssl.cert} ${configHelpers.service.ssl.key} tls ${configHelpers.service.ssl.cert} ${configHelpers.service.ssl.key}
''; '';
}; };
@ -64,7 +74,7 @@ in
networking = { networking = {
firewall = { firewall = {
allowedTCPPorts = [ interfaces.wg0.allowedTCPPorts = [
configHelpers.service.ports.port0 configHelpers.service.ports.port0
]; ];
}; };

4
systems/ceres/config/wireguard.nix
View file

@ -16,10 +16,6 @@ in
service.ports.port0 service.ports.port0
service.ports.port1 service.ports.port1
]; ];
interfaces.wg0.allowedTCPPorts = [
searx.ports.port0
glance.ports.port0
];
}; };
nat = { nat = {

5
systems/deimos/config/wireguard.nix
View file

@ -8,7 +8,10 @@ in
{ {
networking = { networking = {
hosts = { hosts = {
${ceres.wireguard.ip0} = [ instances.searx.domains.url0 ]; ${ceres.wireguard.ip0} = [
instances.searx.domains.url0
instances.glance.domains.url0
];
}; };
wireguard.interfaces = { wireguard.interfaces = {
wg0 = { wg0 = {