63 lines
1.5 KiB
Nix
63 lines
1.5 KiB
Nix
{
|
|
config,
|
|
lib,
|
|
pkgs,
|
|
pkgsUnstable,
|
|
inputs,
|
|
...
|
|
}:
|
|
{
|
|
network.routingType = "dynamic";
|
|
network.hardwareAddress = "BC:24:11:B7:0C:49";
|
|
network.staticAddresses = [
|
|
"/24"
|
|
"/64"
|
|
];
|
|
qemu.enable = true;
|
|
spice.enable = true;
|
|
|
|
sops.secrets."SEARXNG_SECRETS" = {
|
|
sopsFile = ../../secrets/app-01_searxng.env;
|
|
format = "binary";
|
|
owner = "searx";
|
|
mode = "0400";
|
|
};
|
|
|
|
appserver.enable = true;
|
|
radicale.enable = true;
|
|
searxng = {
|
|
enable = true;
|
|
environmentFile = config.sops.secrets."SEARXNG_SECRETS".path;
|
|
};
|
|
|
|
services.traefik = {
|
|
staticConfigOptions = {
|
|
entryPoints = {
|
|
gitea-ssh = {
|
|
address = ":2200";
|
|
};
|
|
};
|
|
};
|
|
};
|
|
|
|
borg-config = {
|
|
enable = true;
|
|
|
|
backupLabel = "appserver";
|
|
localRepoPath = "ssh://borg@borg-01.tail755c5.ts.net/./";
|
|
remoteRepoPath = "ssh://fm1833@fm1833.rsync.net/./appdata";
|
|
sourceDirectories = [
|
|
"/mnt/data/docker-compose"
|
|
"/mnt/data/services"
|
|
];
|
|
hcPingUrlLocal = "https://hc.its-et.me/ping/PlGPBqq-0rLI4N4ya3jYmg/backup-appdata";
|
|
hcPingUrlRemote = "https://hc.its-et.me/ping/PlGPBqq-0rLI4N4ya3jYmg/backup-appdata-remote";
|
|
};
|
|
|
|
base.userSSHKeys = [
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIM7okhAMUPfQQWlu2+627UwJNKqYUGVZhQScny8uutZL etorres@xenon"
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIExID7De5qVOFAoe4o4+A0SkmVBKLxm1M75ngr3eAr4A etorres@erics-mac"
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINQyyYYTekJE2/nqfvzFq1MGmu7F6NMSTd5wFEEjenlA etorres@iphone"
|
|
];
|
|
}
|