2023-08-09 15:47:01 +01:00
|
|
|
{config, ...}: let
|
2023-08-01 22:06:30 +01:00
|
|
|
ports = import ../data/ports.nix {};
|
2023-08-09 15:47:01 +01:00
|
|
|
piped_config = config.services.piped;
|
2022-12-03 13:16:22 +00:00
|
|
|
in {
|
2023-08-09 15:47:01 +01:00
|
|
|
config.services.piped = {
|
2022-12-03 13:16:22 +00:00
|
|
|
enable = true;
|
2022-12-03 14:45:31 +00:00
|
|
|
frontendDomain = "piped.owo.monster";
|
|
|
|
|
backendDomain = "backend.piped.owo.monster";
|
|
|
|
|
proxyDomain = "proxy.piped.owo.monster";
|
2023-08-01 22:06:30 +01:00
|
|
|
|
2023-08-09 15:47:01 +01:00
|
|
|
nginxForceSSL = false;
|
|
|
|
|
nginxEnableACME = false;
|
2023-08-01 22:06:30 +01:00
|
|
|
|
|
|
|
|
# Do not set proxyNginxExtraConfig here as needs be set in outside of container
|
|
|
|
|
|
2022-12-03 15:30:16 +00:00
|
|
|
internalBackendPort = ports.piped-backend;
|
|
|
|
|
internalProxyPort = ports.piped-proxy;
|
2022-12-03 13:16:22 +00:00
|
|
|
};
|
2023-08-09 15:47:01 +01:00
|
|
|
|
|
|
|
|
config.systemd.tmpfiles.rules = [
|
|
|
|
|
"d /var/sockets - nginx nginx"
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
config.systemd.services.nginx.serviceConfig.ReadWritePaths = [
|
|
|
|
|
"/var/sockets"
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
config.services.nginx.virtualHosts."${piped_config.frontendDomain}" = {
|
|
|
|
|
extraConfig = "listen unix:/var/sockets/piped-frontend.sock;";
|
|
|
|
|
};
|
|
|
|
|
config.services.nginx.virtualHosts."${piped_config.backendDomain}" = {
|
|
|
|
|
extraConfig = "listen unix:/var/sockets/piped-backend.sock;";
|
|
|
|
|
};
|
|
|
|
|
config.services.nginx.virtualHosts."${piped_config.proxyDomain}" = {
|
|
|
|
|
extraConfig = "listen unix:/var/sockets/piped-proxy.sock;";
|
|
|
|
|
};
|
2022-12-03 13:16:22 +00:00
|
|
|
}
|
