move all host-specific configuration to hosts directory

2024-09-17 17:22:58 +01:00 · 2024-09-17 17:22:58 +01:00 · f4da07c4e6
commit f4da07c4e6
parent 7189fae109
4 changed files with 16 additions and 31 deletions
--- a/hosts/yevaud/default.nix
+++ b/hosts/yevaud/default.nix
@ -0,0 +1,48 @@
+{ config, lib, pkgs, ... }:
+
+{
+  imports = [
+    ./hardware-configuration.nix
+  ];
+
+  networking.hostId = "09673d65";
+  deployment.targetHost = "yevaud.birdsong.network";
+
+  boot.loader.systemd-boot.enable = true;
+  boot.loader.efi.canTouchEfiVariables = true;
+
+  users.users.qenya.extraGroups = [ "wheel" ];
+
+  qenya.base-server.enable = true;
+
+  age.secrets.wireguard-peer-yevaud.file = ../../secrets/wireguard-peer-yevaud.age;
+
+  birdsong.peering = {
+    enable = true;
+    privateKeyFile = config.age.secrets.wireguard-peer-yevaud.path;
+  };
+
+  qenya.services.forgejo = {
+    enable = true;
+    domain = "git.qenya.tel";
+    stateDir = "/data/forgejo";
+  };
+
+  services.nginx = {
+    enable = true;
+    virtualHosts = {
+      "git.katherina.rocks" = {
+        forceSSL = true;
+        enableACME = true;
+        locations."/".return = "301 https://git.qenya.tel$request_uri";
+      };
+      "birdsong.network" = {
+        forceSSL = true;
+        enableACME = true;
+        locations."/".return = "301 https://git.qenya.tel/qenya/birdsong/";
+      };
+    };
+  };
+
+  system.stateVersion = "23.11";
+}