nixos/machines/Ophanim/options.nix

{ config, lib, ... }:

with lib;

let
  cfg = config.machine;
in {
  config.machine = rec {
    hostName = "Ophanim";
    domain = "ophanim.de";
    administrators = [ { name = "derped"; id = 1337; } ];
    mailAccounts = [ { name = "derped"; aliases = [ "postmaster" "baensch" ]; } ];
    allowUnfree = true;
    conffiles = [
      "etcvars"
      "security"
      "zsh"
    ];
    pkgs = [
      "base"
      "server"
    ];
    services = [
      "fail2ban"
      "gitea"
#      "hydra"
      "mailserver"
      "mariaDB"
      "nextcloud"
      "nginx"
      "openssh"
    ];
    vHosts = (let base = domain; in [
      { domain = base; service = "simple"; }
#      { domain = "builder.${base}"; service = "hydra"; }
#      { domain = "cache.${base}"; service = "cache"; }
      { domain = "storage.${base}"; service = "nextcloud"; }
      { domain = "mail.${base}"; service = "mail"; }
      { domain = "git.${base}"; service = "gitea"; }
    ]);
    firewall = {
      enable = true;
      allowPing = false;
      allowedUDPPorts = [ 22 80 443 ];
      allowedTCPPorts = [ 80 443 ];
    };
  };
}
Add suppport for multiple Domains. 2019-10-08 13:15:38 +02:00			`{ config, lib, ... }:`
Added domain option. Maybe fixed binary cache signing. 2019-03-23 02:50:48 +01:00
			`with lib;`

Add suppport for multiple Domains. 2019-10-08 13:15:38 +02:00			`let`
			`cfg = config.machine;`
			`in {`
Modularized nginx config. 2019-06-22 23:58:08 +02:00			`config.machine = rec {`
Added domain option. Maybe fixed binary cache signing. 2019-03-23 02:50:48 +01:00			`hostName = "Ophanim";`
Add suppport for multiple Domains. 2019-10-08 13:15:38 +02:00			`domain = "ophanim.de";`
Dehardcoded user configuration. 2019-04-13 00:05:39 +02:00			`administrators = [ { name = "derped"; id = 1337; } ];`
Remove CDServer and references to mailman3. 2023-01-29 14:52:18 +01:00			`mailAccounts = [ { name = "derped"; aliases = [ "postmaster" "baensch" ]; } ];`
Added domain option. Maybe fixed binary cache signing. 2019-03-23 02:50:48 +01:00			`allowUnfree = true;`
			`conffiles = [`
			`"etcvars"`
			`"security"`
			`"zsh"`
			`];`
			`pkgs = [`
			`"base"`
			`"server"`
			`];`
			`services = [`
			`"fail2ban"`
			`"gitea"`
Ophanim: Disable hydra CI (for now) and add new mail alias. 2020-01-30 15:23:26 +01:00			`# "hydra"`
Added domain option. Maybe fixed binary cache signing. 2019-03-23 02:50:48 +01:00			`"mailserver"`
			`"mariaDB"`
			`"nextcloud"`
			`"nginx"`
			`"openssh"`
			`];`
Modularized nginx config. 2019-06-22 23:58:08 +02:00			`vHosts = (let base = domain; in [`
			`{ domain = base; service = "simple"; }`
Ophanim: Disable hydra CI (for now) and add new mail alias. 2020-01-30 15:23:26 +01:00			`# { domain = "builder.${base}"; service = "hydra"; }`
			`# { domain = "cache.${base}"; service = "cache"; }`
Modularized nginx config. 2019-06-22 23:58:08 +02:00			`{ domain = "storage.${base}"; service = "nextcloud"; }`
			`{ domain = "mail.${base}"; service = "mail"; }`
			`{ domain = "git.${base}"; service = "gitea"; }`
			`]);`
Added domain option. Maybe fixed binary cache signing. 2019-03-23 02:50:48 +01:00			`firewall = {`
Make config.machine.firewall an alias of networking.firewall. 2019-08-27 16:24:59 +02:00			`enable = true;`
Added domain option. Maybe fixed binary cache signing. 2019-03-23 02:50:48 +01:00			`allowPing = false;`
			`allowedUDPPorts = [ 22 80 443 ];`
Make config.machine.firewall an alias of networking.firewall. 2019-08-27 16:24:59 +02:00			`allowedTCPPorts = [ 80 443 ];`
Added domain option. Maybe fixed binary cache signing. 2019-03-23 02:50:48 +01:00			`};`
			`};`
			`}`