canigou: add miniflux service

This commit is contained in:
Dmitriy Pleshevskiy 2023-06-22 17:12:06 +03:00
parent 037ae4227d
commit 61c141dca6
Signed by: pleshevskiy
GPG key ID: 79C4487B44403985
6 changed files with 29 additions and 6 deletions

Binary file not shown.

View file

@ -15,6 +15,7 @@ in
../../shared/docker-swarm.nix ../../shared/docker-swarm.nix
./services/wireguard.nix ./services/wireguard.nix
./services/miniflux.nix
]; ];
boot.kernelPackages = pkgs.linuxPackages_6_1; boot.kernelPackages = pkgs.linuxPackages_6_1;

View file

@ -0,0 +1,19 @@
{ config, ... }:
let
port = 33001;
addr = "0.0.0.0:${toString port}";
in
{
services.miniflux = {
enable = true;
adminCredentialsFile = config.age.secrets.miniflux-admin-credentials.path;
config = {
LISTEN_ADDR = addr;
};
};
age.secrets.miniflux-admin-credentials.file = ../../../../secrets/miniflux-admin-credentials.age;
networking.firewall.allowedTCPPorts = [ port ];
}

View file

@ -13,6 +13,7 @@ in
../../shared/fail2ban ../../shared/fail2ban
../../shared/garbage-collector.nix ../../shared/garbage-collector.nix
../../shared/docker-swarm.nix ../../shared/docker-swarm.nix
../../shared/acme.nix
./services/mailserver.nix ./services/mailserver.nix
./services/gitea.nix ./services/gitea.nix
@ -29,10 +30,4 @@ in
services.openssh.enable = true; services.openssh.enable = true;
users.users.root.openssh.authorizedKeys.keys = data.publicKeys.users.jan; users.users.root.openssh.authorizedKeys.keys = data.publicKeys.users.jan;
security.acme = {
acceptTerms = true;
defaults.email = "dmitriy@pleshevski.ru";
};
} }

8
nixos/shared/acme.nix Normal file
View file

@ -0,0 +1,8 @@
{ ... }:
{
security.acme = {
acceptTerms = true;
defaults.email = "dmitriy@pleshevski.ru";
};
}

Binary file not shown.