Single domain for public and tailscale

2025-08-22 18:14:29 +02:00 · 2025-08-22 18:14:29 +02:00 · 7f5cab32e1
commit 7f5cab32e1
parent 4bc15a5913
6 changed files with 24 additions and 54 deletions
--- a/hosts/caddy/default.nix
+++ b/hosts/caddy/default.nix
@ -6,7 +6,6 @@
  ...
 }:
 let
-  email = "pasettodavide@gmail.com";
  p = import ../parameters.nix;
 in
 {
@ -14,20 +13,11 @@ in
  age.secrets = {
    searx-secret.file = ../../secrets/searx-secret.age;
    tailscale-authKey.file = ../../secrets/tailscale-authKey.age;
-    cloudflare-tegola-apiKey = {
-      file = ../../secrets/cloudflare-tegola-apiKey.age;
-      owner = config.services.caddy.user;
-      group = config.services.caddy.group;
-    };
    cloudflare-pasetto-apiKey = {
      file = ../../secrets/cloudflare-pasetto-apiKey.age;
      owner = config.services.caddy.user;
      group = config.services.caddy.group;
    };
-    ddclient = {
-      file = ../../secrets/ddclient.age;
-      mode = "400";
-    };
  };

  my = {
@ -69,7 +59,7 @@ in
      media-mgr = {
        proxy = {
          enable = true;
-          domain = p.domains.ts;
+          domain = p.domains.public;
          host = p.hosts.arr;
        };
      };
@ -116,7 +106,7 @@ in
      prometheus = {
        proxy = {
          enable = true;
-          domain = p.domains.ts;
+          domain = p.domains.public;
          host = p.hosts.metrics;
        };
      };
@ -141,14 +131,9 @@ in
        enable = true;
        configEnvFile = config.age.secrets.cloudflare-pasetto-apiKey.path;
        domainsList = [
-          {
-            domain = p.domains.ts;
-            email = email;
-            cloudflareApiKeyFile = config.age.secrets.cloudflare-tegola-apiKey.path;
-          }
          {
            domain = p.domains.public;
-            email = email;
+            email = p.email;
            cloudflareApiKeyFile = config.age.secrets.cloudflare-pasetto-apiKey.path;
          }
        ];
@ -167,8 +152,8 @@ in
          }
          {
            subdomain = "torrent";
-            host = "http://qbittorrent.${p.domains.tsDns}:8090";
-            domain = p.domains.ts;
+            host = "http://qbittorrent.ts.${p.domains.tsDns}:8090";
+            domain = p.domains.public;
          }
          {
            subdomain = "ai";
@ -184,11 +169,6 @@ in

      };

-      ddclient = {
-        enable = false;
-        configFile = config.age.secrets.ddclient.path;
-      };
-
    };

    virtualisation = {
@ -201,16 +181,5 @@ in
    };
  };

-  # Extra packages
-  environment.systemPackages = with pkgs; [ ];
-
-  services = {
-    iperf3 = {
-      enable = true;
-      openFirewall = true;
-    };
-
-  };
-
  system.stateVersion = "24.05";
 }