test: setting up opencloud and microvms

2025-12-06 21:17:14 -06:00 · 2025-12-04 23:24:00 -06:00 · 2025-12-04 23:24:00 -06:00 · b5929e0834
commit b5929e0834
parent 0ed3bb9b64
8 changed files with 79 additions and 35 deletions
--- a/modules/config/instances/config/caddy.nix
+++ b/modules/config/instances/config/caddy.nix
@ -16,7 +16,7 @@ in
  ports = {
    port0 = 80;
    port1 = 443;
-    port2 = 8443;
-    port3 = 8445; # Opencloud
+    port2 = 8080;
+    port3 = 8443;
  };
 }
--- a/modules/config/instances/config/firefly-iii.nix
+++ b/modules/config/instances/config/firefly-iii.nix
@ -32,7 +32,7 @@ in
  ];
  subdomain = subdomain;
  ports = {
-    port0 = 8080;
+    port0 = 8084;
    port1 = 8081;
  };
  interface = {
--- a/modules/nixos/default.nix
+++ b/modules/nixos/default.nix
@ -45,7 +45,7 @@ in
      imports = builtins.attrValues {
        inherit (modules)
          acme
-          caddy
+          caddy0
          comfyui
          firefly-iii
          forgejo
@ -71,7 +71,7 @@ in
      imports = builtins.attrValues {
        inherit (modules)
          acme
-          caddy
+          caddy1
          impermanence
          microvm
          opencloud0
--- a/modules/nixos/services/caddy/caddy0/default.nix
+++ b/modules/nixos/services/caddy/caddy0/default.nix
@ -0,0 +1,33 @@
+{ flake, ... }:
+let
+  inherit (flake.config.services) instances;
+  inherit (flake.config.machines.devices) eris;
+  opencloud = instances.opencloud0;
+  service = instances.caddy;
+in
+{
+  services.caddy = {
+    enable = true;
+    virtualHosts = {
+      "${opencloud.domains.url0}" = {
+        extraConfig = ''
+          reverse_proxy ${eris.ip.address0}:${builtins.toString service.ports.port1} {
+            transport http {
+              tls
+              tls_insecure_skip_verify
+            }
+          }
+        '';
+      };
+    };
+  };
+
+  networking = {
+    firewall = {
+      allowedTCPPorts = [
+        service.ports.port0
+        service.ports.port1
+      ];
+    };
+  };
+}
--- a/modules/nixos/services/caddy/caddy1/default.nix
+++ b/modules/nixos/services/caddy/caddy1/default.nix
@ -0,0 +1,20 @@
+{ flake, ... }:
+let
+  inherit (flake.config.services) instances;
+
+  service = instances.caddy;
+in
+{
+  services.caddy = {
+    enable = true;
+  };
+
+  networking = {
+    firewall = {
+      allowedTCPPorts = [
+        service.ports.port0
+        service.ports.port1
+      ];
+    };
+  };
+}
--- a/modules/nixos/services/caddy/default.nix
+++ b/modules/nixos/services/caddy/default.nix
@ -1,20 +1,11 @@
-{ flake, ... }:
 let
-  inherit (flake.config.services) instances;
-
-  service = instances.caddy;
+  importList =
+    let
+      content = builtins.readDir ./.;
+      dirContent = builtins.filter (n: content.${n} == "directory") (builtins.attrNames content);
+    in
+    map (name: ./. + "/${name}") dirContent;
 in
 {
-  services.caddy = {
-    enable = true;
-  };
-
-  networking = {
-    firewall = {
-      allowedTCPPorts = [
-        service.ports.port0
-        service.ports.port1
-      ];
-    };
-  };
+  imports = importList;
 }