ivabus/nixos
1
0
Fork 0
mirror of https://github.com/ivabus/nixos synced 2024-11-22 08:25:07 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions
nixos/machines/rubusidaeus/default.nix
Ivan Bushchik bae66afecb
Fix http3 
Signed-off-by: Ivan Bushchik <ivabus@ivabus.dev>
2024-04-21 10:51:14 +03:00

229 lines
6.7 KiB
Nix
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

{ config, pkgs, lib, secrets, ... }:
let
my = import ../..;
ipv6_subnet = "2a03:e2c0:47cb:5555";
ipv6_prefix = 64;
ipv4_gateway = "192.168.1.1";
ipv4_address = "192.168.1.3";
ipv4_prefix = 24;
in {
imports = [ my.modules ../../hardware/rpi4.nix ];
networking.hostName = "rubusidaeus";
my.laptop.enable = false;
my.git.enable = false;
my.roles = {
design.enable = false;
devel.enable = false;
gaming.enable = false;
graphical.enable = false;
graphical.basic.enable = false;
latex.enable = false;
media-client.enable = false;
ntp-server.enable = true;
torrent.enable = false;
virtualisation.enable = false;
yggdrasil-peer.enable = true;
server = {
ivabus-dev.enable = true;
slides-ivabus-dev.enable = true;
urouter = {
enable = true;
settings = {
alias = [
{
uri = "/";
alias = {
html = ''
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>@ivabus</title>
<style>
@font-face {
font-family: "JetBrains Mono";
src: url(https://ivabus.dev/assets/fonts/JetBrainsMono-VariableFont_wght.ttf)format("truetype")
}
body {
width: 300px;
margin-left: auto;
margin-right: auto;
background-color: #24273a;
color: #cad3f5;
font-family: "JetBrains Mono", monospace;
}
h1 {
font-size: 24pt;
}
ul {
background-color: #363a4f;
border-radius: 6px;
padding: 16px;
padding-bottom: 8px;
list-style-type: none;
text-align: center;
}
a {
color: #cad3f5;
text-decoration: none;
}
li {
background-color: #494d64;
font-size: 14pt;
border-radius: 6px;
padding: 8px;
margin-bottom: 8px;
}
a:hover {
color: #f4dbd6;
}
li:hover {
background-color: #5b6078;
color: #f4dbd6;
}
@media all and (max-width:300px) {
body {
width: auto;
}
}
</style>
</head>
<body>
<h1 align="center">@ivabus</h1>
<ul>
<a href="https://ivabus.dev/"><li>Website</li></a>
<a href="https://t.me/dev_fumo"><li>/dev/fumo</li></a>
<a href="https://t.me/musicativabus"><li>/var/music@ivabus</li></a>
<a href="https://github.com/ivabus"><li>GitHub</li></a>
<a href="https://social.treehouse.systems/@ivabus"><li>Mastodon</li></a>
<a href="https://vk.com/ivabus"><li>VK</li></a>
<li class="link">ivabus at ivabus.dev</li>
</ul>
</body>
</html>'';
};
}
{
uri = "/";
alias = { file = "dotfiles"; };
agent = { regex = "^curl/[0-9].[0-9].[0-9]$"; };
}
{
uri = "d";
alias = { file = "dotfiles"; };
}
{
uri = "e";
alias = { file = "env"; };
}
{
uri = "nix";
alias = { file = "nix"; };
}
{
uri = "truth";
alias = { file = "truth.py"; };
}
];
};
dir = "/var/urouter";
port = 8090;
address = "0.0.0.0";
};
};
};
my.users = {
ivabus.enable = true;
user.enable = false;
};
my.features.secrets = true;
networking = {
useNetworkd = false;
useDHCP = false;
interfaces = {
end0 = {
ipv6.addresses = [{
address = "${ipv6_subnet}::1337";
prefixLength = ipv6_prefix;
}];
ipv4.addresses = [{
address = ipv4_address; # Ughhhhh yep, flat network
prefixLength = ipv4_prefix;
}];
};
};
defaultGateway = ipv4_gateway; # should set this things through let...
};
# 2 gig of ram is not enough
swapDevices = [{
device = "/var/lib/swapfile";
size = 16 * 1024;
}];
# Semi-static configuration, needs rethinking
services.nginx = {
virtualHosts."iva.bz" = {
locations."/".proxyPass = "http://localhost:8090";
enableACME = true;
addSSL = true;
quic = true;
http3 = true;
serverAliases = [ "www.iva.bz" ];
};
virtualHosts."xn--80acbx2cl.xn--p1ai" = {
locations."/".proxyPass = "http://${secrets.maas-address}:8083";
enableACME = true;
addSSL = true;
quic = true;
http3 = true;
serverAliases = [ "ивабус.рф" ];
};
virtualHosts."music.ivabus.dev" = {
locations."/".proxyPass = "http://${secrets.maas-address}:4533";
enableACME = true;
forceSSL = true;
quic = true;
http3 = true;
};
virtualHosts."storage.ivabus.dev" = {
locations."/".proxyPass = "http://${secrets.maas-address}:80";
enableACME = true;
forceSSL = true;
quic = true;
http3 = true;
};
virtualHosts."storage.private.ivabus.dev" = {
locations."/".proxyPass = "http://${secrets.maas-address}:80";
enableACME = true;
forceSSL = true;
quic = true;
http3 = true;
};
virtualHosts."git.ivabus.dev" = {
locations."/".proxyPass = "http://${secrets.maas-address}:3000";
enableACME = true;
forceSSL = true;
quic = true;
http3 = true;
};
virtualHosts."b.iva.bz" = {
locations."/".proxyPass = "http://${secrets.maas-address}:8888";
enableACME = true;
addSSL = true;
quic = true;
http3 = true;
};
};
hardware.enableRedistributableFirmware = true;
system.stateVersion = "23.05";
}
Reference in a new issue View git blame Copy permalink