initial nginx configuration for fcuny.net

author: Franck Cuny <franck@fcuny.net> 2024-08-05 17:14:21 -0700
committer: Franck Cuny <franck@fcuny.net> 2024-08-05 17:14:21 -0700
commit: 6cf40b8a0099a883d99727bd752734de67a071b8 (patch)
tree: 62381d76c24a0154297361fdedf282c6fb9173cf /nix/hosts
parent: set the ssh key for user fcuny (diff)
download: world-6cf40b8a0099a883d99727bd752734de67a071b8.tar.gz
2 files changed, 31 insertions, 0 deletions
diff --git a/nix/hosts/wildcat/configuration.nix b/nix/hosts/wildcat/configuration.nix
new file mode 100644
index 0000000..c4c50c5
--- /dev/null
+++ b/nix/hosts/wildcat/configuration.nix
@@ -0,0 +1,30 @@
+{ ... }: {
+  networking = {
+    firewall.allowedTCPPorts = [
+      # nginx
+      80
+      443
+    ];
+  };
+
+  security.acme = {
+    defaults.email = "acme@fcuny.net";
+    acceptTerms = true;
+  };
+
+  services.nginx = {
+    enable = true;
+    recommendedProxySettings = true;
+    virtualHosts = {
+      "fcuny.net" = {
+        addSSL = true;
+        enableACME = true;
+        locations = {
+          "/" = {
+            root = "/srv/www/fcuny.net";
+          };
+        };
+      };
+    };
+  };
+}
diff --git a/nix/hosts/wildcat/default.nix b/nix/hosts/wildcat/default.nix
index 8d8edaa..fcaad82 100644
--- a/nix/hosts/wildcat/default.nix
+++ b/nix/hosts/wildcat/default.nix
@@ -3,6 +3,7 @@
   imports = [
     ./hardware.nix
     ./networking.nix
+    ./configuration.nix
   ];
 
   boot.tmp.cleanOnBoot = true;
author	Franck Cuny <franck@fcuny.net>	2024-08-05 17:14:21 -0700
committer	Franck Cuny <franck@fcuny.net>	2024-08-05 17:14:21 -0700
commit	6cf40b8a0099a883d99727bd752734de67a071b8 (patch)
tree	62381d76c24a0154297361fdedf282c6fb9173cf /nix/hosts
parent	set the ssh key for user fcuny (diff)
download	world-6cf40b8a0099a883d99727bd752734de67a071b8.tar.gz