From a8cb1f33b2c0ea49c434b5f251fe45938d050f6a Mon Sep 17 00:00:00 2001 From: Seth Flynn Date: Thu, 20 Feb 2025 04:19:27 -0500 Subject: nixos: include nginx proxies in mixins --- systems/atlas/default.nix | 25 +++++++++++++++++++++---- systems/atlas/forgejo.nix | 7 ------- systems/atlas/grafana.nix | 18 ------------------ systems/atlas/kanidm.nix | 6 ------ systems/atlas/miniflux.nix | 44 -------------------------------------------- 5 files changed, 21 insertions(+), 79 deletions(-) delete mode 100644 systems/atlas/forgejo.nix delete mode 100644 systems/atlas/grafana.nix delete mode 100644 systems/atlas/kanidm.nix delete mode 100644 systems/atlas/miniflux.nix (limited to 'systems/atlas') diff --git a/systems/atlas/default.nix b/systems/atlas/default.nix index 9c8cc7b..0e85853 100644 --- a/systems/atlas/default.nix +++ b/systems/atlas/default.nix @@ -3,10 +3,6 @@ imports = [ (modulesPath + "/profiles/minimal.nix") ./hardware-configuration.nix - ./forgejo.nix - ./grafana.nix - ./kanidm.nix - ./miniflux.nix ./moyai.nix ./nixpkgs-tracker-bot.nix ./victoria-metrics.nix @@ -23,6 +19,10 @@ loader.efi.canTouchEfiVariables = true; }; + catppuccin = { + forgejo.enable = true; + }; + networking = { domain = "getchoo.com"; hostName = "atlas"; @@ -36,7 +36,24 @@ nixpkgs.hostPlatform = "aarch64-linux"; services = { + forgejo.enable = true; + + grafana.enable = true; + hedgedoc.enable = true; + + kanidm = { + enableClient = true; + enableServer = true; + }; + + miniflux = { + enable = true; + config = { + METRICS_COLLECTOR = 1; + }; + }; + nginx.enable = true; }; diff --git a/systems/atlas/forgejo.nix b/systems/atlas/forgejo.nix deleted file mode 100644 index 1d86e91..0000000 --- a/systems/atlas/forgejo.nix +++ /dev/null @@ -1,7 +0,0 @@ -{ - catppuccin.forgejo.enable = true; - - services = { - forgejo.enable = true; - }; -} diff --git a/systems/atlas/grafana.nix b/systems/atlas/grafana.nix deleted file mode 100644 index c6a84ab..0000000 --- a/systems/atlas/grafana.nix +++ /dev/null @@ -1,18 +0,0 @@ -{ config, ... }: - -{ - services = { - grafana = { - enable = true; - }; - - nginx.virtualHosts = { - "grafana.getchoo.com" = { - locations."/" = { - proxyPass = "http://${config.services.grafana.settings.server.http_addr}:${toString config.services.grafana.settings.server.http_port}"; - proxyWebsockets = true; - }; - }; - }; - }; -} diff --git a/systems/atlas/kanidm.nix b/systems/atlas/kanidm.nix deleted file mode 100644 index dc1e534..0000000 --- a/systems/atlas/kanidm.nix +++ /dev/null @@ -1,6 +0,0 @@ -{ - services.kanidm = { - enableClient = true; - enableServer = true; - }; -} diff --git a/systems/atlas/miniflux.nix b/systems/atlas/miniflux.nix deleted file mode 100644 index 14c9fc5..0000000 --- a/systems/atlas/miniflux.nix +++ /dev/null @@ -1,44 +0,0 @@ -{ - config, - secretsDir, - ... -}: - -{ - age.secrets.miniflux.file = secretsDir + "/miniflux.age"; - - services = { - miniflux = { - enable = true; - adminCredentialsFile = config.age.secrets.miniflux.path; - config = { - BASE_URL = "https://miniflux.${config.networking.domain}"; - LISTEN_ADDR = "localhost:7000"; - METRICS_COLLECTOR = 1; - }; - }; - - nginx.virtualHosts = { - "miniflux.getchoo.com" = { - locations."/" = { - proxyPass = "http://${config.services.miniflux.config.LISTEN_ADDR}"; - }; - }; - }; - }; - - /* - # Create the socket manually to ensure NGINX has permission for the socket's parent directory - # ...since for some reason Miniflux will not give it the same `0777` permission as the socket itself - systemd = { - services.miniflux = { - requires = [ "miniflux.socket" ]; - }; - - sockets.miniflux = { - wantedBy = [ "sockets.target" ]; - listenStreams = [ "/run/miniflux.sock" ]; - }; - }; - */ -} -- cgit v1.2.3