jawz/NixOS
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

firefly-iii ssl

Browse Source
This commit is contained in:
Danilo Reyes
2024-06-30 14:00:21 -06:00
parent 6860500959
commit ede55a7226
2 changed files with 14 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
modules/servers.nix
View File

@@ -162,9 +162,6 @@ in {
}; };
services.nginx = { services.nginx = {
clientMaxBodySize = "4096m"; clientMaxBodySize = "4096m";
# recommendedTlsSettings = true;
# recommendedGzipSettings = true;
# recommendedOptimisation = true;
sslCiphers = "AES256+EECDH:AES256+EDH:!aNULL"; sslCiphers = "AES256+EECDH:AES256+EDH:!aNULL";
}; };
networking.firewall = let ports = [ 80 443 ]; networking.firewall = let ports = [ 80 443 ];

22
modules/servers/firefly-iii.nix
View File

@@ -6,14 +6,20 @@
owner = config.users.users.firefly-iii.name; owner = config.users.users.firefly-iii.name;
inherit (config.users.users.firefly-iii) group; inherit (config.users.users.firefly-iii) group;
}; };
services.firefly-iii = { services = {
enable = true; nginx.virtualHosts."${config.services.firefly-iii.virtualHost}" = {
virtualHost = "money.servidos.lat"; forceSSL = true;
enableNginx = true; enableACME = true;
settings = { };
APP_KEY_FILE = config.sops.secrets.firefly-iii-keyfile.path; firefly-iii = {
DB_HOST = config.my.postgresSocket; enable = true;
DB_CONNECTION = "pgsql"; virtualHost = "money.servidos.lat";
enableNginx = true;
settings = {
APP_KEY_FILE = config.sops.secrets.firefly-iii-keyfile.path;
DB_HOST = config.my.postgresSocket;
DB_CONNECTION = "pgsql";
};
}; };
}; };
}; };