rnhmjoj/maxwell
2
1
Fork 0
Code Issues Pull Requests Releases Wiki Activity

remove end-of-line whitespace

Browse Source
This commit is contained in:
Michele Guerini Rocco 2020-11-13 08:49:13 +01:00
parent ce35396da0
commit 16c0713523
Signed by: rnhmjoj
GPG Key ID: BFBAF4C975F76450
1 changed files with 9 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
configuration.nix
View File

@ -35,7 +35,7 @@
hostName = "maxwell"; hostName = "maxwell";
firewall.allowedTCPPorts = [ firewall.allowedTCPPorts = [
443 80 # reverse proxy 443 80 # reverse proxy
8080 # hubot 8080 # hubot
5349 # turn server 5349 # turn server
5350 # turn server 5350 # turn server
@ -128,7 +128,7 @@
# Users don't have a password # Users don't have a password
wheelNeedsPassword = false; wheelNeedsPassword = false;
extraConfig = extraConfig =
let let
path = "/run/current-system/sw/bin"; path = "/run/current-system/sw/bin";
journal = name: "${path}/journalctl -* ${name}"; journal = name: "${path}/journalctl -* ${name}";
services = lib.concatMapStringsSep "," (name: "${journal name}"); services = lib.concatMapStringsSep "," (name: "${journal name}");
@ -152,14 +152,14 @@
''; '';
# Limit user process to stop fork bombs # Limit user process to stop fork bombs
security.pam.loginLimits = [ security.pam.loginLimits = [
{ domain = "@users"; { domain = "@users";
type = "hard"; type = "hard";
item = "nproc"; item = "nproc";
value = "400"; value = "400";
} }
]; ];
### ACME certificates ### ACME certificates
security.acme = with config.var; { security.acme = with config.var; {
email = "rnhmjoj@inventati.org"; email = "rnhmjoj@inventati.org";
@ -312,7 +312,7 @@
ssl_session_timeout 23m; ssl_session_timeout 23m;
ssl_prefer_server_ciphers on; ssl_prefer_server_ciphers on;
ssl_stapling on; ssl_stapling on;
ssl_stapling_verify on; ssl_stapling_verify on;
''; '';
recommendedGzipSettings = true; recommendedGzipSettings = true;
recommendedProxySettings = true; recommendedProxySettings = true;
@ -323,8 +323,7 @@
sslDhparam = "${config.security.dhparams.path}/nginx.pem"; sslDhparam = "${config.security.dhparams.path}/nginx.pem";
# Maxwell # Maxwell
virtualHosts."${hostname}" = virtualHosts."${hostname}" = {
{
enableACME = true; enableACME = true;
forceSSL = true; forceSSL = true;
default = true; default = true;
@ -334,7 +333,7 @@
# Returns IP address # Returns IP address
locations."/ip".extraConfig = "return 200 $remote_addr;"; locations."/ip".extraConfig = "return 200 $remote_addr;";
# Asjon code coverage reports # Asjon code coverage reports
locations."/asjon/report/" = { locations."/asjon/report/" = {
index = "index.html"; index = "index.html";
alias = "/var/lib/asjon/tree/report/"; alias = "/var/lib/asjon/tree/report/";
@ -351,7 +350,7 @@
}; };
# Git server # Git server
locations."/git/" .proxyPass = "http://localhost:3000/"; locations."/git/".proxyPass = "http://localhost:3000/";
# Syncthing # Syncthing
locations."/sync/".proxyPass = "http://localhost:8384/"; locations."/sync/".proxyPass = "http://localhost:8384/";