{ lib, config, modulesPath, ... }:

let
  inherit (lib) mkVMOverride;

  fedicfg = config.fediversity.internal.garage;

in {
  imports = [ (modulesPath + "/virtualisation/qemu-vm.nix") ];

  services.nginx.virtualHosts.${fedicfg.web.rootDomain} = {
    forceSSL = mkVMOverride false;
    enableACME = mkVMOverride false;
  };

  virtualisation.diskSize = 2048;
  virtualisation.forwardPorts = [
    {
      from = "host";
      host.port = fedicfg.rpc.port;
      guest.port = fedicfg.rpc.port;
    }
    {
      from = "host";
      host.port = fedicfg.web.internalPort;
      guest.port = fedicfg.web.internalPort;
    }
  ];
}