qbit/xin
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

h/box: switch back to gitea, add webfinger for bd

Browse Source
This commit is contained in:
Aaron Bieber 2023-09-21 12:22:16 -06:00
parent fa03edd9ae
commit 290c82e726
No known key found for this signature in database
2 changed files with 29 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
hosts/box/default.nix
View File

@ -721,7 +721,7 @@ in
stateDir = "/media/git"; stateDir = "/media/git";
appName = "Tape:neT"; appName = "Tape:neT";
package = inputs.unstable.legacyPackages.${pkgs.system}.forgejo; package = inputs.unstable.legacyPackages.${pkgs.system}.gitea;
lfs.enable = true; lfs.enable = true;

26
hosts/h/default.nix
View File

@ -516,6 +516,28 @@ in
forceSSL = true; forceSSL = true;
enableACME = true; enableACME = true;
root = "/var/www/bolddaemon.com"; root = "/var/www/bolddaemon.com";
locations = {
"/.well-known/webfinger" = {
extraConfig = ''
add_header Strict-Transport-Security $hsts_header;
add_header Referrer-Policy origin-when-cross-origin;
add_header X-Frame-Options DENY;
add_header X-Content-Type-Options nosniff;
add_header Content-Type application/json;
return 200 '${builtins.toJSON {
subject = "acct:aaron@bolddaemon.com";
links = [
{
rel = "http://openid.net/specs/connect/1.0/issuer";
href = "https://git.tapenet.org/";
}
];
}}';
'';
};
};
}; };
"relay.bolddaemon.com" = { "relay.bolddaemon.com" = {
forceSSL = true; forceSSL = true;
@ -568,12 +590,14 @@ in
forceSSL = true; forceSSL = true;
enableACME = true; enableACME = true;
locations."/" = { locations = {
"/" = {
proxyPass = "http://192.168.112.4:3000"; proxyPass = "http://192.168.112.4:3000";
proxyWebsockets = true; proxyWebsockets = true;
priority = 1000; priority = 1000;
}; };
}; };
};
"bw.tapenet.org" = { "bw.tapenet.org" = {
forceSSL = true; forceSSL = true;