From 658701c1973d066131f6a3ea5250a249f095b513 Mon Sep 17 00:00:00 2001 From: rndusr Date: Wed, 22 Nov 2023 16:31:31 -0600 Subject: [PATCH] add some server things --- boxes/netbox.nix | 26 ++++++++++++++++---------- modules/mail.nix | 5 +++++ 2 files changed, 21 insertions(+), 10 deletions(-) diff --git a/boxes/netbox.nix b/boxes/netbox.nix index c2f9975..95f882d 100644 --- a/boxes/netbox.nix +++ b/boxes/netbox.nix @@ -69,6 +69,12 @@ root = "/var/www/beepboop.systems"; }; + services.nginx.virtualHosts."cloud.beepboop.systems" = { + forceSSL = true; + enableACME = true; + locations."/".proxyPass = "http://localhost:4000"; + }; + services.nginx.virtualHosts."git.beepboop.systems" = { forceSSL = true; enableACME = true; @@ -122,15 +128,15 @@ ''; }; - services.paperless = { - enable = true; - passwordFile = "/etc/paperless-password"; - port = 3004; - address = "localhost"; - extraConfig = { - PAPERLESS_URL = "https://paperless.beepboop.systems"; - }; - }; +# services.paperless = { +# enable = true; +# passwordFile = "/etc/paperless-password"; +# port = 3004; +# address = "localhost"; +# extraConfig = { +# PAPERLESS_URL = "https://paperless.beepboop.systems"; +# }; +# }; # services.ntfy-sh = { # enable = true; @@ -143,5 +149,5 @@ # Open ports in the firewall. networking.firewall.enable = false; - networking.firewall.allowedTCPPorts = [ 55555 80 443 ]; + networking.firewall.allowedTCPPorts = [ 5232 55555 80 443 ]; } diff --git a/modules/mail.nix b/modules/mail.nix index bc686b1..af5f33c 100644 --- a/modules/mail.nix +++ b/modules/mail.nix @@ -30,6 +30,11 @@ in { "postmaster@beepboop.systems" ]; }; + + "mailsynchronization@beepboop.systems" = { + # nix-shell -p mkpasswd --run 'mkpasswd -sm bcrypt' > /hashed/password/file/location + hashedPasswordFile = "/etc/ryan-beepboop-systemsuser-pass"; + }; }; certificateScheme = "acme-nginx"; };