Fediversity/simple-nixos-fediverse
6
1
Fork 2
Code Issues 21 Pull requests 1 Actions Projects Wiki Activity

Remove SSL in Garage VM

Browse source
This commit is contained in:
Nicolas Jeannerod 2024-09-24 14:55:20 +02:00
parent bf303ff1d1
commit e6b58b656b
Signed by: Niols
GPG key ID: 35DB9EC8886E1CB8
2 changed files with 9 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
fediversity/garage.nix
View file

@ -159,10 +159,9 @@ in
}; };
}; };
services.nginx.virtualHosts."garagePortProxy" = { services.nginx.virtualHosts.${fedicfg.web.rootDomain} = {
forceSSL = true; forceSSL = true;
enableACME = true; enableACME = true;
serverName = fedicfg.web.rootDomain;
serverAliases = lib.mapAttrsToList (bucket: _: fedicfg.web.domainForBucket bucket) cfg.ensureBuckets; ## TODO: use wildcard certificates? serverAliases = lib.mapAttrsToList (bucket: _: fedicfg.web.domainForBucket bucket) cfg.ensureBuckets; ## TODO: use wildcard certificates?
locations."/" = { locations."/" = {
proxyPass = "http://localhost:3902"; proxyPass = "http://localhost:3902";

9
vm/garage-vm.nix
View file

@ -1,6 +1,8 @@
{ config, modulesPath, ... }: { lib, config, modulesPath, ... }:
let let
inherit (lib) mkVMOverride;
fedicfg = config.fediversity.internal.garage; fedicfg = config.fediversity.internal.garage;
in { in {
@ -9,6 +11,11 @@ in {
(modulesPath + "/virtualisation/qemu-vm.nix") (modulesPath + "/virtualisation/qemu-vm.nix")
]; ];
services.nginx.virtualHosts.${fedicfg.web.rootDomain} = {
forceSSL = mkVMOverride false;
enableACME = mkVMOverride false;
};
virtualisation.diskSize = 2048; virtualisation.diskSize = 2048;
virtualisation.forwardPorts = [ virtualisation.forwardPorts = [
{ {