pazpi/nix
1
0
Fork 0
Code Issues 2 Pull requests Projects Releases Packages Wiki Activity Actions

File with parameters. Hosts, domains, more in the future

Browse source
This commit is contained in:
= 2025-02-04 21:23:58 +01:00
parent 8926e6e565
commit 490b30f436
5 changed files with 47 additions and 42 deletions
Download patch file Download diff file Expand all files Collapse all files

5
hosts/authentik/default.nix
View file

@ -5,6 +5,9 @@
imports,
...
}:
let
p = import ../parameters.nix;
in
{
age.secrets.authentik-env.file = ../../secrets/authentik-env.age;
@ -26,7 +29,7 @@
use_ssl = false;
from = "auth@pazpi.top";
};
proxy.domain = "tegola.pro";
proxy.domain = p.domains.public;
};
virtualisation.proxmox.enable = true;
};

53
hosts/caddy/default.nix
View file

@ -7,10 +7,8 @@
}:
let
tailscaleMagicDNS = "neon-dory.ts.net";
publicDomain = "pasetto.me";
tsDomain = "tegola.pro";
email = "pasettodavide@gmail.com";
hosts = import ../hosts.nix;
p = import ../parameters.nix;
in
{
@ -41,13 +39,10 @@ in
services = {
authentik = {
authentik.proxy = {
enable = true;
proxy = {
enable = true;
domain = tsDomain;
host = hosts.authentik;
};
domain = p.domains.public;
host = p.hosts.authentik;
};
dashy = {
@ -55,24 +50,24 @@ in
settings = import ./dashy-settings.nix;
proxy = {
enable = true;
domain = publicDomain;
host = hosts.caddy;
domain = p.domains.public;
host = p.hosts.caddy;
};
};
media-mgr = {
proxy = {
enable = true;
domain = tsDomain;
host = hosts.arr;
domain = p.domains.ts;
host = p.hosts.arr;
};
};
nextcloud = {
proxy = {
enable = true;
domain = publicDomain;
host = hosts.nextcloud;
domain = p.domains.public;
host = p.hosts.nextcloud;
};
};
@ -80,19 +75,19 @@ in
enable = true;
secretFile = config.age.secrets.searx-secret.path;
enableAI = true;
perplexicaUrl = hosts.portainer;
perplexicaUrl = p.hosts.portainer;
proxy = {
enable = true;
domain = tsDomain;
host = hosts.caddy;
domain = p.domains.ts;
host = p.hosts.caddy;
};
};
vaultwarden = {
proxy = {
enable = true;
domain = publicDomain;
host = hosts.vaultwarden;
domain = p.domains.public;
host = p.hosts.vaultwarden;
};
};
@ -102,16 +97,16 @@ in
prometheus = {
proxy = {
enable = true;
domain = tsDomain;
host = hosts.metrics;
domain = p.domains.ts;
host = p.hosts.metrics;
};
};
grafana = {
proxy = {
enable = true;
domain = tsDomain;
host = hosts.metrics;
domain = p.domains.ts;
host = p.hosts.metrics;
};
};
};
@ -128,19 +123,19 @@ in
configEnvFile = config.age.secrets.cloudflare-pasetto-apiKey.path;
domainsList = [
{
domain = tsDomain;
domain = p.domains.ts;
email = email;
cloudflareApiKeyFile = config.age.secrets.cloudflare-tegola-apiKey.path;
}
{
domain = publicDomain;
domain = p.domains.public;
email = email;
cloudflareApiKeyFile = config.age.secrets.cloudflare-pasetto-apiKey.path;
}
];
dynamicdnsDomains = [
{
domain = publicDomain;
domain = p.domains.public;
cloudflareApiEnvName = "CLOUDFLARE_API_TOKEN";
}
];
@ -149,7 +144,7 @@ in
{
subdomain = "h";
host = "http://ha.internal:8123";
domain = publicDomain;
domain = p.domains.public;
}
];
@ -166,7 +161,7 @@ in
proxmox.enable = true;
portainer.proxy = {
enable = true;
domain = tsDomain;
domain = p.domains.ts;
host = "portainer.internal";
};
};

3
hosts/deployments.nix
View file

@ -1,6 +1,7 @@
{ inputs, ... }:
let
hosts = import ./hosts.nix;
p = import ./parameters.nix;
hosts = p.hosts;
in
{
meta = {

11
hosts/hosts.nix
View file

@ -1,11 +0,0 @@
{
authentik = "auth.internal";
arr = "arr.internal";
caddy = "caddy.internal";
metrics = "metrics.internal";
nextcloud = "nextcloud.internal";
vaultwarden = "vaultwarden.internal";
plex = "plex.internal";
portainer = "portainer.internal";
colmena = "colmena.internal";
}

17
hosts/parameters.nix Normal file
View file

@ -0,0 +1,17 @@
{
hosts = {
authentik = "auth.internal";
arr = "arr.internal";
caddy = "caddy.internal";
metrics = "metrics.internal";
nextcloud = "nextcloud.internal";
vaultwarden = "vaultwarden.internal";
plex = "plex.internal";
portainer = "portainer.internal";
colmena = "colmena.internal";
};
domains = {
public = "pasetto.me";
ts = "tegola.pro";
};
}