all repos — nixfiles @ 7dbf62563b7694315040d628e91f5149b241566c

System and user configuration, managed by nix and home-manager

linde: run test version of homestead/website
Alan Pearce alan@alanpearce.eu
Thu, 06 Feb 2025 17:49:14 +0100
commit

7dbf62563b7694315040d628e91f5149b241566c

parent

4b7a0e362655d346572e89be23bc004bb99321cf

1 files changed, 30 insertions(+), 9 deletions(-)

jump to
M system/linde.nixsystem/linde.nix
@@ -507,17 +507,16 @@ "http://" = {           # Needed for HTTP->HTTPS servers
         };
         "alanpearce.eu" = {
-          serverAliases = [ "www.alanpearce.eu" "test.alanpearce.eu" ];
+          serverAliases = [
+            "www.alanpearce.eu"
+            "alanpearce.uk"
+            "www.alanpearce.uk"
+            "aln.pe"
+            "test.alanpearce.eu"
+          ];
           useACMEHost = "alanpearce.eu";
           extraConfig = ''
-            encode zstd gzip
-            root * /srv/http/website/public
-            file_server
-            ${security-headers {}}
-            handle_errors {
-              rewrite * /404.html
-              file_server
-            }
+            reverse_proxy http://localhost:8080
           '';
         };
         "${hostname}.alanpearce.eu" = {
@@ -1013,6 +1012,28 @@ virtualisation.containers = {     enable = true;
     policy = {
       default = [{ type = "insecureAcceptAnything"; }];
+    };
+  };
+  virtualisation.oci-containers = {
+    containers.website = {
+      image = "ko.local/server:latest";
+      ports = [
+        "8080:8080"
+        "8443:8443"
+      ];
+      volumes = [
+        "data:/data"
+      ];
+      environmentFiles = [
+        config.age.secrets.powerdns.path
+      ];
+      environment = {
+        SERVER_LISTEN_ADDRESS = "::";
+        SERVER_TLS = "false";
+        WEBSITE_SOURCE = "/data/website";
+        WEBSITE_DESTINATION = "/data/public";
+        WEBSITE_REMOTE_VCS_URL = "https://git.alanpearce.eu/website";
+      };
     };
   };