diff options
author | makefu <github@syntax-fehler.de> | 2017-04-28 12:45:09 +0200 |
---|---|---|
committer | makefu <github@syntax-fehler.de> | 2017-04-28 12:45:09 +0200 |
commit | 8306b292a94d467f185052cd912053059ead9c14 (patch) | |
tree | cd553e5204e54c5bf21d1f080db80070bb981652 /2configs/deployment/boot-euer.nix | |
parent | 77539eb730a92637cb8704c6c97a5c6481b2b0d9 (diff) |
m 2 deployment: add boot-euer
Diffstat (limited to '2configs/deployment/boot-euer.nix')
-rw-r--r-- | 2configs/deployment/boot-euer.nix | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/2configs/deployment/boot-euer.nix b/2configs/deployment/boot-euer.nix new file mode 100644 index 000000000..be24209bc --- /dev/null +++ b/2configs/deployment/boot-euer.nix @@ -0,0 +1,28 @@ +{ config, lib, pkgs, ... }: +# more than just nginx config but not enough to become a module +with import <stockholm/lib>; +let + hostname = config.krebs.build.host.name; + bootscript = pkgs.writeTextDir "runit" '' + set -euf + cd /root + mkdir -p .ssh + echo "${config.krebs.users.makefu.pubkey}" > .ssh/authorized_keys + chmod 700 -R .ssh + systemctl restart sshd + ''; +in { + + services.nginx = { + enable = mkDefault true; + virtualHosts."boot.euer.krebsco.de" = { + enableSSL = true; + forceSSL = true; + enableACME = true; + locations."/" = { + root = bootscript; + index = "runit"; + }; + }; + }; +} |