pointfichiers/hosts/OVHCloud/hardware-configuration.nix

{
  modulesPath,
  config,
  inputs,
  pkgs,
  ...
}: {
  imports = [
    (modulesPath + "/profiles/qemu-guest.nix")
    ./disko-config.nix
  ];

  boot.loader.grub = {
    efiSupport = true;
    efiInstallAsRemovable = true;
  };

  # Firewall
  networking.nftables.enable = true;
  networking.firewall = {
    enable = true;
    allowedTCPPorts = [22 80 443];
  };

  # Proxy
  environment.systemPackages = with pkgs; [
    nss.tools
  ];

  services.caddy = {
    enable = true;
    package = inputs.caddy.packages.${pkgs.system}.caddy;

    globalConfig = ''
      acme_dns ovh {
        endpoint {$OVH_ENDPOINT}
        application_key {$OVH_APPLICATION_KEY}
        application_secret {$OVH_APPLICATION_SECRET}
        consumer_key {$OVH_CONSUMER_KEY}
      }
    '';
  };
  systemd.services.caddy = {
    serviceConfig = {
      EnvironmentFile = config.sops.templates."caddy.env".path;
    };
  };
}
feat(OVHCloud): Added simple caddy config 2024-09-26 11:50:00 +02:00			`{`
			`modulesPath,`
feat(OVHCloud): Setup example caddy virtualHost 2024-09-27 15:41:13 +02:00			`config,`
feat(OVHCloud): Added simple caddy config 2024-09-26 11:50:00 +02:00			`inputs,`
			`pkgs,`
			`...`
			`}: {`
feat(hosts): Added new `OVHCloud` basic host config 2024-09-23 16:57:09 +02:00			`imports = [`
			`(modulesPath + "/profiles/qemu-guest.nix")`
			`./disko-config.nix`
			`];`

			`boot.loader.grub = {`
			`efiSupport = true;`
			`efiInstallAsRemovable = true;`
			`};`
feat(OVHCloud -> hw-config): Added simple firewall config Using nftables 2024-09-26 10:24:32 +02:00
			`# Firewall`
			`networking.nftables.enable = true;`
			`networking.firewall = {`
			`enable = true;`
			`allowedTCPPorts = [22 80 443];`
			`};`
feat(OVHCloud): Added simple caddy config 2024-09-26 11:50:00 +02:00
			`# Proxy`
feat(OVHCloud): Setup example caddy virtualHost 2024-09-27 15:41:13 +02:00			`environment.systemPackages = with pkgs; [`
			`nss.tools`
			`];`

feat(OVHCloud): Added simple caddy config 2024-09-26 11:50:00 +02:00			`services.caddy = {`
			`enable = true;`
			`package = inputs.caddy.packages.${pkgs.system}.caddy;`
fix(OVHCloud): Fixed Caddy OVH prodiver specific config 2024-09-30 12:33:16 +02:00
			`globalConfig = ''`
			`acme_dns ovh {`
			`endpoint {$OVH_ENDPOINT}`
			`application_key {$OVH_APPLICATION_KEY}`
			`application_secret {$OVH_APPLICATION_SECRET}`
			`consumer_key {$OVH_CONSUMER_KEY}`
			`}`
			`'';`
feat(OVHCloud): Added simple caddy config 2024-09-26 11:50:00 +02:00			`};`
feat(OVHCloud): Setup example caddy virtualHost 2024-09-27 15:41:13 +02:00			`systemd.services.caddy = {`
			`serviceConfig = {`
			`EnvironmentFile = config.sops.templates."caddy.env".path;`
			`};`
			`};`
feat(hosts): Added new `OVHCloud` basic host config 2024-09-23 16:57:09 +02:00			`}`