summaryrefslogtreecommitdiff
path: root/modules/server
diff options
context:
space:
mode:
Diffstat (limited to 'modules/server')
-rw-r--r--modules/server/default.nix1
-rw-r--r--modules/server/harmonia.nix10
-rw-r--r--modules/server/sops.nix1
3 files changed, 12 insertions, 0 deletions
diff --git a/modules/server/default.nix b/modules/server/default.nix
index b8adbe6..56f8801 100644
--- a/modules/server/default.nix
+++ b/modules/server/default.nix
@@ -3,6 +3,7 @@
imports = [
./virtualisation
./networking
+ ./harmonia.nix
./sops.nix
./system.nix
./users.nix
diff --git a/modules/server/harmonia.nix b/modules/server/harmonia.nix
new file mode 100644
index 0000000..538cebe
--- /dev/null
+++ b/modules/server/harmonia.nix
@@ -0,0 +1,10 @@
+{ config, ... }:
+{
+ nix.settings.allowed-users = [ "harmonia" ];
+ services.caddy.virtualHosts."cache.fuwn.me".extraConfig = "reverse_proxy localhost:5000";
+
+ services.harmonia = {
+ enable = true;
+ signKeyPaths = [ config.sops.secrets.harmonia.path ];
+ };
+}
diff --git a/modules/server/sops.nix b/modules/server/sops.nix
index a2b5e78..1c07abc 100644
--- a/modules/server/sops.nix
+++ b/modules/server/sops.nix
@@ -9,6 +9,7 @@
tailscale_authentication_key = { };
finnhub_token = { };
caddy_environment_file = { };
+ harmonia = { };
fuwnme_onion_secret_key = {
format = "binary";
generated by cgit v1.2.3 (git 2.25.1) at 2026-05-13 14:51:23 +0000