From 11a8dfebffad3d21320eba6808b409861b8b211d Mon Sep 17 00:00:00 2001 From: Amneesh Singh Date: Thu, 4 Sep 2025 16:35:31 +0530 Subject: [PATCH] hosts/suwako: move gitea from marisa to suwako Signed-off-by: Amneesh Singh --- hosts/marisa/services/default.nix | 13 ------- hosts/remilia/networking.nix | 3 +- hosts/remilia/services.nix | 40 ++++++++++++++------- hosts/suwako/services/default.nix | 11 ++++++ hosts/{marisa => suwako}/services/gitea.nix | 7 ++-- hosts/suwako/services/nginx.nix | 6 ++++ 6 files changed, 49 insertions(+), 31 deletions(-) rename hosts/{marisa => suwako}/services/gitea.nix (87%) diff --git a/hosts/marisa/services/default.nix b/hosts/marisa/services/default.nix index 8aec345..2c66ebd 100644 --- a/hosts/marisa/services/default.nix +++ b/hosts/marisa/services/default.nix @@ -3,14 +3,11 @@ imports = [ # ./hashicorp.nix - ./gitea.nix ]; - # Add secrets to nomad, consul and vault virtualisation.docker = { enable = true; daemon.settings = { - # default-cgroupns-mode = "host"; }; }; services = { @@ -21,15 +18,5 @@ 22001 ]; }; - postgresql = { - enable = true; - authentication = '' - local gitea all ident map=gitea-map - ''; - identMap = '' - gitea-map gitea gitea - ''; - }; - }; } diff --git a/hosts/remilia/networking.nix b/hosts/remilia/networking.nix index 3ffe3a2..d0b5601 100644 --- a/hosts/remilia/networking.nix +++ b/hosts/remilia/networking.nix @@ -25,7 +25,8 @@ 22001 22002 4444 - ] ++ (map (x: x.sourcePort) config.networking.nat.forwardPorts); + ] + ++ (map (x: x.sourcePort) config.networking.nat.forwardPorts); allowedUDPPorts = [ 17840 ]; }; }; diff --git a/hosts/remilia/services.nix b/hosts/remilia/services.nix index 5f1ec0a..bf7622e 100644 --- a/hosts/remilia/services.nix +++ b/hosts/remilia/services.nix @@ -45,12 +45,11 @@ in forceSSL = ssl; locations."/" = { proxyPass = toString addr; - extraConfig = - '' - expires $expires; - proxy_set_header Host $host; - '' - + conf; + extraConfig = '' + expires $expires; + proxy_set_header Host $host; + '' + + conf; }; }; in @@ -65,10 +64,11 @@ in }; serverAliases = [ "www.${domain}" ]; }; - # "vault.${domain}" = genericHttpRProxy { addr = "https://${marisa}:8800"; }; - # "consul.${domain}" = genericHttpRProxy { addr = "http://${marisa}:8500"; }; - "f.${domain}" = genericHttpRProxy { addr = "http://${marisa}:8000"; }; + + # MPD server "radio.${domain}" = genericHttpRProxy { addr = "http://${satori}:8001"; }; + + # Some random music server I once had /* "radio.${domain}" = { addSSL = true; @@ -84,10 +84,24 @@ in }; */ - "git.${domain}" = genericHttpRProxy { - addr = "http://${marisa}:5001"; - conf = "client_max_body_size 64M;"; - }; + # Gitea + /* + "git.${domain}" = genericHttpRProxy { + addr = "http://${marisa}:5001"; + conf = "client_max_body_size 64M;"; + }; + */ + + # Personal filehost + # "f.${domain}" = genericHttpRProxy { addr = "http://${marisa}:8000"; }; + + # Hashicorp Vault + # "vault.${domain}" = genericHttpRProxy { addr = "https://${marisa}:8800"; }; + + # Hashicorp Consul + # "consul.${domain}" = genericHttpRProxy { addr = "http://${marisa}:8500"; }; + + # Hashicorp Nomad /* "nomad.${domain}" = genericHttpRProxy { addr = "http://${marisa}:4646"; diff --git a/hosts/suwako/services/default.nix b/hosts/suwako/services/default.nix index ef5c008..d4f10a7 100644 --- a/hosts/suwako/services/default.nix +++ b/hosts/suwako/services/default.nix @@ -4,6 +4,7 @@ ./nginx.nix ./pufferpanel.nix ./filehost.nix + ./gitea.nix ]; virtualisation.docker = { @@ -18,5 +19,15 @@ settings.PermitRootLogin = "yes"; ports = [ 22 ]; }; + + postgresql = { + enable = true; + authentication = '' + local gitea all ident map=gitea-map + ''; + identMap = '' + gitea-map gitea gitea + ''; + }; }; } diff --git a/hosts/marisa/services/gitea.nix b/hosts/suwako/services/gitea.nix similarity index 87% rename from hosts/marisa/services/gitea.nix rename to hosts/suwako/services/gitea.nix index f6ee315..e8016b3 100644 --- a/hosts/marisa/services/gitea.nix +++ b/hosts/suwako/services/gitea.nix @@ -25,15 +25,14 @@ HTTP_PORT = 5001; ROOT_URL = "https://git.${domain}"; SSH_DOMAIN = "git.${domain}"; - SSH_PORT = 22001; + SSH_PORT = 22; SSH_LISTEN_PORT = SSH_PORT; }; mailer = rec { ENABLED = true; FROM = "masti@${domain}"; - TYPE = "smtp"; - HOST = "mail.${domain}"; - IS_TLS_ENABLED = true; + SMTP_ADDR = "mail.${domain}"; + PROTOCOL = "smtps"; USER = FROM; REGISTER_MAIL_CONFIRM = true; }; diff --git a/hosts/suwako/services/nginx.nix b/hosts/suwako/services/nginx.nix index ac635e1..7b01da5 100644 --- a/hosts/suwako/services/nginx.nix +++ b/hosts/suwako/services/nginx.nix @@ -52,6 +52,12 @@ in ''; }; + # Gitea + "git.${domain}" = genericHttpRProxy { + addr = "http://${suwako}:5001"; + conf = "client_max_body_size 64M;"; + }; + # Personal filehost "f.${domain}" = genericHttpRProxy { addr = "http://${suwako}:8000"; }; };