summaryrefslogtreecommitdiff
path: root/modules/nixos/headscale.nix
diff options
context:
space:
mode:
authorDevin Finlinson <devin.finlinson@pm.me>2023-12-11 21:57:07 +0000
committerDevin Finlinson <devin.finlinson@pm.me>2023-12-11 21:57:07 +0000
commit91124b5f7a2687fdba3cba9c8936cc57fcb672ee (patch)
treebb478939642494841253bca5f92695a7ab75c1f3 /modules/nixos/headscale.nix
parent349375f1425a73b1e4ee805820d6ac7557e755f8 (diff)
trying cadd reverse proxy, looks easier to configure
Diffstat (limited to 'modules/nixos/headscale.nix')
-rw-r--r--modules/nixos/headscale.nix39
1 files changed, 22 insertions, 17 deletions
diff --git a/modules/nixos/headscale.nix b/modules/nixos/headscale.nix
index a4c9308..bde6fae 100644
--- a/modules/nixos/headscale.nix
+++ b/modules/nixos/headscale.nix
@@ -15,27 +15,32 @@ in {
};
};
- nginx.virtualHosts.${subDomain} = {
- forceSSL = true;
- enableACME = true;
- locations."/" = {
- proxyPass =
- "http://localhost:${toString config.services.headscale.port}";
- proxyWebsockets = true;
- };
- };
- };
+ # nginx.virtualHosts.${subDomain} = {
+ # forceSSL = true;
+ # enableACME = true;
+ # locations."/" = {
+ # proxyPass =
+ # "http://localhost:${toString config.services.headscale.port}";
+ # proxyWebsockets = true;
+ # };
+ # };
+ # };
+
+ # environment.systemPackages = [ config.services.headscale.package ];
- environment.systemPackages = [ config.services.headscale.package ];
+ # security.acme = {
+ # acceptTerms = true;
+ # email = "devin.finlinson@pm.me";
+ # };
- security.acme = {
- acceptTerms = true;
+ services.caddy = {
+ enable = true;
email = "devin.finlinson@pm.me";
+ virtualHosts.${subDomain}.extraConfig = ''
+ reverse_proxy http://localhost:${toString config.services.headscale.port}
+ '';
};
- networking.firewall.allowedTCPPorts = [
- 80
- 443
- ];
+ networking.firewall.allowedTCPPorts = [ 80 443 ];
}
generated by cgit v1.2.3 (git 2.25.1) at 2025-12-07 13:58:50 +0000