titaniumtown/server-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

nits

Browse Source
This commit is contained in:
Simon Gardling 2025-02-01 11:12:31 -05:00
parent 964041c860
commit ad8a012746
Signed by: titaniumtown
GPG Key ID: 9AB28AC10ECE533D
6 changed files with 49 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
configuration.nix
View File

@ -196,7 +196,6 @@
pfetch-rs pfetch-rs
sbctl sbctl
]; ];
services.zfs = { services.zfs = {
@ -288,7 +287,6 @@
"render" "render"
"postgres" "postgres"
"owntracks" "owntracks"
"immich"
]; ];
hashedPasswordFile = "/etc/nixos/secrets/hashedPass"; hashedPasswordFile = "/etc/nixos/secrets/hashedPass";

33
disk-config.nix Normal file
View File

@ -0,0 +1,33 @@
{
disko.devices = {
disk = {
main = {
# When using disko-install, we will overwrite this value from the commandline
device = "/dev/disk/by-id/some-disk-id";
type = "disk";
content = {
type = "gpt";
partitions = {
ESP = {
type = "EF00";
size = "500M";
content = {
type = "filesystem";
format = "vfat";
mountpoint = "/boot";
};
};
root = {
size = "100%";
content = {
type = "filesystem";
format = "f2fs";
mountpoint = "/";
};
};
};
};
};
};
};
}

9
flake.nix
View File

@ -24,6 +24,11 @@
url = "github:nix-community/home-manager/release-24.11"; url = "github:nix-community/home-manager/release-24.11";
inputs.nixpkgs.follows = "nixpkgs"; inputs.nixpkgs.follows = "nixpkgs";
}; };
disko = {
url = "github:nix-community/disko";
inputs.nixpkgs.follows = "nixpkgs";
};
}; };
outputs = outputs =
@ -35,6 +40,7 @@
nixpkgs-qbt, nixpkgs-qbt,
home-manager, home-manager,
lanzaboote, lanzaboote,
disko,
... ...
}@inputs: }@inputs:
let let
@ -54,6 +60,7 @@
ollama = 11434; ollama = 11434;
bitmagnet = 3333; bitmagnet = 3333;
owntracks = 3825; owntracks = 3825;
gitea = 2283;
}; };
https = { https = {
@ -108,6 +115,8 @@
}; };
modules = modules =
[ [
./disk-config.nix
disko.nixosModules.disko
./configuration.nix ./configuration.nix
vpn-confinement.nixosModules.default vpn-confinement.nixosModules.default

2
services/caddy.nix
View File

@ -52,7 +52,7 @@ in
"torrent.${service_configs.https.domain}".extraConfig = '' "torrent.${service_configs.https.domain}".extraConfig = ''
# tls internal # tls internal
${import ../secrets/caddy_auth.nix} ${import ../secrets/caddy_auth.nix}
reverse_proxy ${service_configs.https.wg_ip}:${builtins.toString service_configs.ports.torrent} reverse_proxy ${service_configs.https.wg_ip}:${builtins.toString config.services.qbittorrent.webuiPort}
''; '';
"map.${service_configs.https.domain}".extraConfig = '' "map.${service_configs.https.domain}".extraConfig = ''

2
services/gitea.nix
View File

@ -18,7 +18,7 @@
server = { server = {
DOMAIN = service_configs.gitea.domain; DOMAIN = service_configs.gitea.domain;
ROOT_URL = "https://" + config.services.gitea.settings.server.DOMAIN; ROOT_URL = "https://" + config.services.gitea.settings.server.DOMAIN;
HTTP_PORT = 3281; HTTP_PORT = service_configs.ports.gitea;
LANDING_PAGE = "/explore/repos"; LANDING_PAGE = "/explore/repos";
}; };
session = { session = {

5
services/immich.nix
View File

@ -2,6 +2,7 @@
service_configs, service_configs,
pkgs, pkgs,
config, config,
username,
... ...
}: }:
{ {
@ -28,4 +29,8 @@
"video" "video"
"render" "render"
]; ];
users.users.${username}.extraGroups = [
config.services.immich.group
];
} }