thegeneralist01/config
1
Fork 0
mirror of https://github.com/thegeneralist01/config.git synced 2026-03-07 10:59:55 +01:00
Code Issues Activity

site: finish setup

Browse source
This commit is contained in:
TheGeneralist 2025-06-27 04:02:02 +02:00
parent c49a6e7bd8
commit a44510ee09
Signed by: thegeneralist01
SSH key fingerprint: SHA256:pp9qddbCNmVNoSjevdvQvM5z0DHN7LTa8qBMbcMq/R4
7 changed files with 53 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

6
hosts/thegeneralist-central/cert.pem.age Normal file
View file

@ -0,0 +1,6 @@
age-encryption.org/v1
-> ssh-ed25519 pp9qdQ 2WgjmfKlFjtkMRuA1pHNaGDoGKUozBBjYosmfSNL8EA
dbFwrLcgWUaxKkHPGsGF7OaOXb3xf5nsCdGhnkbkzPU
--- yCk7ScptYN12uv1aCqyqfqRHvxl8QiAaFRXd3KgJbdE
èn­ gDÊÎ~ÿ·GÛ÷¦¢èþâât%ó­uá÷÷© ¦—1ãg<C3A3> UÖ¥zL<7A>ÖY|ÓŸ¾añr¹o\©èBs8@kê~Ar†To£þ÷%zžÀ²—yƒ¨ë|"ÿ™‡`CÁjw·ºõŠ¨ñ5±>‡lû¼ÂeèºFœy<C593>ÃfEìÁ·éZÉó½ êUÃÅ:|H <1B>Š“¸=è¨u¥ñˆÂÑ© þ(ÈÀ^qÙ‡Œoï˜ô=‰<>ûï<C3BB>q3Œ×b<C397>I­ äìA¹ðýn¹`<60>ksGj
:…ÐM¨¥˜X·`ßolÄçéÙ‡etddÁoÊÉö¬ÍÑóPíüFï§~‡ôƒÕ¥Úÿ#9*M,hþÑ­Zjo”Øo|ª"­Ïe$©ÏÙ0ºV

6
hosts/thegeneralist-central/cftoken.age Normal file
View file

@ -0,0 +1,6 @@
age-encryption.org/v1
-> ssh-ed25519 pp9qdQ OrqCuVIzHaavNZxpOXYlIcnrHJe5GOjtcIhmaw+8wHI
TQCYrhgm4O52QPodgSmFMvyw0Ln7n/+vFlGnONctPKk
--- jOnFOfG4YRnpvtmmoEVfbh3mAXtfcJiTjzja46xTKMk
Ï ÷r_z'Dx<44>y2Ô—ÿƒG½8¹hë}=è‡EàK«[wÀßÆìöaðÿBÞ
÷þH ħÿHîÆbEÿì9{´YSÑÎJÞL>²ö¨êPÈÒ“m£ÿDšn¤BQ Qšš2êÕ¸·çW&uÒ‡X…¼òf»FUoj6Q3e4¡X¸* ‚Ý*ó*xÚÓÖ½©ç Cî±ÏýpÇ’ }”ÛVµ9~ =û`ô ½¦<C2BD>AÓI<.÷GEÀ¨2­L1BM‡xÿW…½IlŸ†Ü}2&±âïÖ

3
hosts/thegeneralist-central/configuration.nix
View file

@ -5,7 +5,7 @@
{ self, config, pkgs, lib, inputs, ... }: { self, config, pkgs, lib, inputs, ... }:
{ {
imports = [ ./hardware-configuration.nix ]; imports = [ ./hardware-configuration.nix ./site.nix ];
users.users.thegeneralist = { users.users.thegeneralist = {
isNormalUser = true; isNormalUser = true;
@ -18,7 +18,6 @@
in [ thegeneralist ]; in [ thegeneralist ];
}; };
programs.home-manager.enable = true;
home-manager = { home-manager = {
backupFileExtension = "home.bak"; backupFileExtension = "home.bak";
extraSpecialArgs = { inherit inputs; }; extraSpecialArgs = { inherit inputs; };

BIN
hosts/thegeneralist-central/credentials.age Normal file
View file

Binary file not shown.

33
hosts/thegeneralist-central/site.nix Normal file
View file

@ -0,0 +1,33 @@
{ config, pkgs, ... }: let
domain = "thegeneralist01.com";
in {
environment.systemPackages = [ pkgs.cloudflared ];
services.nginx = {
enable = true;
virtualHosts = {
"${domain}" = {
root = "/var/www/${domain}";
locations."/".tryFiles = "$uri $uri/ $uri/index.html";
};
};
};
age.secrets.cftcert.file = ./cert.pem.age;
age.secrets.cftcredentials.file = ./credentials.age;
services.cloudflared = {
enable = true;
certificateFile = config.age.secrets.cftcert.path;
tunnels."site" = {
ingress = {
"thegeneralist01.com" = "http://localhost:80";
"www.thegeneralist01.com" = "http://localhost:80";
};
default = "http_status:404";
credentialsFile = config.age.secrets.cftcredentials.path;
certificateFile = config.age.secrets.cftcert.path;
};
};
}

4
modules/common/home-manager.nix
View file

@ -3,4 +3,8 @@
useGlobalPkgs = true; useGlobalPkgs = true;
useUserPackages = true; useUserPackages = true;
}; };
home-manager.sharedModules = [{
programs.home-manager.enable = true;
}];
} }

3
secrets.nix
View file

@ -4,5 +4,8 @@ in {
"hosts/thegeneralist/hostkey.age".publicKeys = [ thegeneralist ]; "hosts/thegeneralist/hostkey.age".publicKeys = [ thegeneralist ];
"hosts/thegeneralist-central/hostkey.age".publicKeys = [ thegeneralist ]; "hosts/thegeneralist-central/hostkey.age".publicKeys = [ thegeneralist ];
"hosts/thegeneralist-central/cert.pem.age".publicKeys = [ thegeneralist ];
"hosts/thegeneralist-central/credentials.age".publicKeys = [ thegeneralist ];
"modules/linux/tailscale-marshall.age".publicKeys = [ thegeneralist ]; "modules/linux/tailscale-marshall.age".publicKeys = [ thegeneralist ];
} }