mirror of
https://github.com/Nickiel12/nicks-nix-config.git
synced 2024-11-22 20:59:32 -08:00
72 lines
1.7 KiB
Nix
72 lines
1.7 KiB
Nix
{ config, lib, pkgs, ... }:
|
|
|
|
{
|
|
security.acme = {
|
|
acceptTerms = true;
|
|
defaults.email = "nicholasyoungsumner@gmail.com";
|
|
};
|
|
|
|
services.nginx = {
|
|
enable = true;
|
|
commonHttpConfig = ''
|
|
real_ip_header CF-Connecting-IP;
|
|
add_header 'Referrer-Policy' 'origin-when-cross-origin';
|
|
add_header X-Frame-Options DENY;
|
|
add_header X-Content-Type-Options nosniff;
|
|
'';
|
|
|
|
recommendedGzipSettings = true;
|
|
recommendedOptimisation = true;
|
|
recommendedProxySettings = true;
|
|
recommendedTlsSettings = true;
|
|
|
|
virtualHosts = {
|
|
|
|
"default" = {
|
|
default = true;
|
|
serverName = null;
|
|
# https://stackoverflow.com/a/42802777
|
|
locations."/".return = "444";
|
|
};
|
|
|
|
"jellyfin.nickiel.net" = {
|
|
forceSSL = true;
|
|
enableACME = true;
|
|
locations."/" = {
|
|
proxyPass = "http://127.0.0.1:8096/";
|
|
proxyWebsockets = true;
|
|
#extraConfig = "proxy_pass_header Authorization";
|
|
};
|
|
};
|
|
|
|
"iot.nickiel.net" = {
|
|
locations = {
|
|
"/" = {
|
|
root = "/Aurora/StaticSites/iot";
|
|
};
|
|
"/turn_computer_on" = {
|
|
proxyPass = "http://10.0.184/turn_computer_on";
|
|
};
|
|
};
|
|
};
|
|
|
|
"files.nickiel.net" = {
|
|
forceSSL = true;
|
|
enableACME = true;
|
|
};
|
|
|
|
"git.nickiel.net" = {
|
|
forceSSL = true;
|
|
enableACME = true;
|
|
locations."/".proxyPass = "http://127.0.0.1:3001";
|
|
};
|
|
|
|
"staticpages.nickiel.net" = {
|
|
forceSSL = true;
|
|
enableACME = true;
|
|
root = "/Aurora/StaticSites/static_pages/public";
|
|
};
|
|
|
|
};
|
|
};
|
|
}
|