cnst/cnix
1
0
Fork 0
Code Issues Pull Requests Activity

cloudflare stuff

Browse Source
This commit is contained in:
cnst
2025-07-16 05:51:30 +02:00
parent c8dd705c6f
commit a15a2c89bc
3 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
modules/server/caddy/default.nix
View File

@@ -12,6 +12,11 @@ in {
server.caddy.enable = mkEnableOption "Enables caddy"; server.caddy.enable = mkEnableOption "Enables caddy";
}; };
config = mkIf cfg.enable { config = mkIf cfg.enable {
age.secrets.cloudflare-env = {
file = "${self}/secrets/cloudflare-env.age";
owner = "caddy";
mode = "400";
};
networking.firewall = let networking.firewall = let
ports = [80 443]; ports = [80 443];
in { in {
@@ -21,6 +26,7 @@ in {
services.caddy = { services.caddy = {
enable = true; enable = true;
environmentFile = config.age.secrets.cloudflare-env.path;
# package = self.packages.${pkgs.system}.caddy-with-plugins; # package = self.packages.${pkgs.system}.caddy-with-plugins;
}; };
}; };

BIN
secrets/cloudflare-env.age Normal file
View File

Binary file not shown.

1
secrets/secrets.nix
View File

@@ -10,5 +10,6 @@ in {
"keypem.age".publicKeys = [cnst kima]; "keypem.age".publicKeys = [cnst kima];
"mailpwd.age".publicKeys = [cnst kima]; "mailpwd.age".publicKeys = [cnst kima];
"gcapi.age".publicKeys = [cnst kima]; "gcapi.age".publicKeys = [cnst kima];
"cloudflare-env.age".publicKeys = [cnst kima usobotka rsobotka];
"vaultwarden-env.age".publicKeys = [cnst kima usobotka rsobotka]; "vaultwarden-env.age".publicKeys = [cnst kima usobotka rsobotka];
} }