File with parameters. Hosts, domains, more in the future

2025-02-04 21:23:58 +01:00 · 2025-02-04 21:23:58 +01:00 · 490b30f436
commit 490b30f436
parent 8926e6e565
5 changed files with 47 additions and 42 deletions
--- a/hosts/caddy/default.nix
+++ b/hosts/caddy/default.nix
@ -7,10 +7,8 @@
 }:
 let
  tailscaleMagicDNS = "neon-dory.ts.net";
-  publicDomain = "pasetto.me";
-  tsDomain = "tegola.pro";
  email = "pasettodavide@gmail.com";
-  hosts = import ../hosts.nix;
+  p = import ../parameters.nix;
 in
 {

@ -41,13 +39,10 @@ in

    services = {

-      authentik = {
+      authentik.proxy = {
        enable = true;
-        proxy = {
-          enable = true;
-          domain = tsDomain;
-          host = hosts.authentik;
-        };
+        domain = p.domains.public;
+        host = p.hosts.authentik;
      };

      dashy = {
@ -55,24 +50,24 @@ in
        settings = import ./dashy-settings.nix;
        proxy = {
          enable = true;
-          domain = publicDomain;
-          host = hosts.caddy;
+          domain = p.domains.public;
+          host = p.hosts.caddy;
        };
      };

      media-mgr = {
        proxy = {
          enable = true;
-          domain = tsDomain;
-          host = hosts.arr;
+          domain = p.domains.ts;
+          host = p.hosts.arr;
        };
      };

      nextcloud = {
        proxy = {
          enable = true;
-          domain = publicDomain;
-          host = hosts.nextcloud;
+          domain = p.domains.public;
+          host = p.hosts.nextcloud;
        };
      };

@ -80,19 +75,19 @@ in
        enable = true;
        secretFile = config.age.secrets.searx-secret.path;
        enableAI = true;
-        perplexicaUrl = hosts.portainer;
+        perplexicaUrl = p.hosts.portainer;
        proxy = {
          enable = true;
-          domain = tsDomain;
-          host = hosts.caddy;
+          domain = p.domains.ts;
+          host = p.hosts.caddy;
        };
      };

      vaultwarden = {
        proxy = {
          enable = true;
-          domain = publicDomain;
-          host = hosts.vaultwarden;
+          domain = p.domains.public;
+          host = p.hosts.vaultwarden;
        };

      };
@ -102,16 +97,16 @@ in
      prometheus = {
        proxy = {
          enable = true;
-          domain = tsDomain;
-          host = hosts.metrics;
+          domain = p.domains.ts;
+          host = p.hosts.metrics;
        };
      };

      grafana = {
        proxy = {
          enable = true;
-          domain = tsDomain;
-          host = hosts.metrics;
+          domain = p.domains.ts;
+          host = p.hosts.metrics;
        };
      };
    };
@ -128,19 +123,19 @@ in
        configEnvFile = config.age.secrets.cloudflare-pasetto-apiKey.path;
        domainsList = [
          {
-            domain = tsDomain;
+            domain = p.domains.ts;
            email = email;
            cloudflareApiKeyFile = config.age.secrets.cloudflare-tegola-apiKey.path;
          }
          {
-            domain = publicDomain;
+            domain = p.domains.public;
            email = email;
            cloudflareApiKeyFile = config.age.secrets.cloudflare-pasetto-apiKey.path;
          }
        ];
        dynamicdnsDomains = [
          {
-            domain = publicDomain;
+            domain = p.domains.public;
            cloudflareApiEnvName = "CLOUDFLARE_API_TOKEN";
          }
        ];
@ -149,7 +144,7 @@ in
          {
            subdomain = "h";
            host = "http://ha.internal:8123";
-            domain = publicDomain;
+            domain = p.domains.public;
          }
        ];

@ -166,7 +161,7 @@ in
      proxmox.enable = true;
      portainer.proxy = {
        enable = true;
-        domain = tsDomain;
+        domain = p.domains.ts;
        host = "portainer.internal";
      };
    };