nixos: include nginx proxies in mixins

5 files changed, 21 insertions, 79 deletions

diff --git a/systems/atlas/default.nix b/systems/atlas/default.nix
index 9c8cc7b..0e85853 100644
--- a/systems/atlas/default.nix
+++ b/systems/atlas/default.nix
@@ -3,10 +3,6 @@
   imports = [
     (modulesPath + "/profiles/minimal.nix")
     ./hardware-configuration.nix
-    ./forgejo.nix
-    ./grafana.nix
-    ./kanidm.nix
-    ./miniflux.nix
     ./moyai.nix
     ./nixpkgs-tracker-bot.nix
     ./victoria-metrics.nix
@@ -23,6 +19,10 @@
     loader.efi.canTouchEfiVariables = true;
   };
 
+  catppuccin = {
+    forgejo.enable = true;
+  };
+
   networking = {
     domain = "getchoo.com";
     hostName = "atlas";
@@ -36,7 +36,24 @@
   nixpkgs.hostPlatform = "aarch64-linux";
 
   services = {
+    forgejo.enable = true;
+
+    grafana.enable = true;
+
     hedgedoc.enable = true;
+
+    kanidm = {
+      enableClient = true;
+      enableServer = true;
+    };
+
+    miniflux = {
+      enable = true;
+      config = {
+        METRICS_COLLECTOR = 1;
+      };
+    };
+
     nginx.enable = true;
   };
 
diff --git a/systems/atlas/forgejo.nix b/systems/atlas/forgejo.nix
deleted file mode 100644
index 1d86e91..0000000
--- a/systems/atlas/forgejo.nix
+++ /dev/null
@@ -1,7 +0,0 @@
-{
-  catppuccin.forgejo.enable = true;
-
-  services = {
-    forgejo.enable = true;
-  };
-}
diff --git a/systems/atlas/grafana.nix b/systems/atlas/grafana.nix
deleted file mode 100644
index c6a84ab..0000000
--- a/systems/atlas/grafana.nix
+++ /dev/null
@@ -1,18 +0,0 @@
-{ config, ... }:
-
-{
-  services = {
-    grafana = {
-      enable = true;
-    };
-
-    nginx.virtualHosts = {
-      "grafana.getchoo.com" = {
-        locations."/" = {
-          proxyPass = "http://${config.services.grafana.settings.server.http_addr}:${toString config.services.grafana.settings.server.http_port}";
-          proxyWebsockets = true;
-        };
-      };
-    };
-  };
-}
diff --git a/systems/atlas/kanidm.nix b/systems/atlas/kanidm.nix
deleted file mode 100644
index dc1e534..0000000
--- a/systems/atlas/kanidm.nix
+++ /dev/null
@@ -1,6 +0,0 @@
-{
-  services.kanidm = {
-    enableClient = true;
-    enableServer = true;
-  };
-}
diff --git a/systems/atlas/miniflux.nix b/systems/atlas/miniflux.nix
deleted file mode 100644
index 14c9fc5..0000000
--- a/systems/atlas/miniflux.nix
+++ /dev/null
@@ -1,44 +0,0 @@
-{
-  config,
-  secretsDir,
-  ...
-}:
-
-{
-  age.secrets.miniflux.file = secretsDir + "/miniflux.age";
-
-  services = {
-    miniflux = {
-      enable = true;
-      adminCredentialsFile = config.age.secrets.miniflux.path;
-      config = {
-        BASE_URL = "https://miniflux.${config.networking.domain}";
-        LISTEN_ADDR = "localhost:7000";
-        METRICS_COLLECTOR = 1;
-      };
-    };
-
-    nginx.virtualHosts = {
-      "miniflux.getchoo.com" = {
-        locations."/" = {
-          proxyPass = "http://${config.services.miniflux.config.LISTEN_ADDR}";
-        };
-      };
-    };
-  };
-
-  /*
-    # Create the socket manually to ensure NGINX has permission for the socket's parent directory
-    # ...since for some reason Miniflux will not give it the same `0777` permission as the socket itself
-    systemd = {
-      services.miniflux = {
-        requires = [ "miniflux.socket" ];
-      };
-
-      sockets.miniflux = {
-        wantedBy = [ "sockets.target" ];
-        listenStreams = [ "/run/miniflux.sock" ];
-      };
-    };
-  */
-}