diff options
author | makefu <github@syntax-fehler.de> | 2024-01-14 21:45:31 +0100 |
---|---|---|
committer | makefu <github@syntax-fehler.de> | 2024-01-14 21:45:31 +0100 |
commit | 9b553ebec7cb3315d5d7ad551ba942005e0da501 (patch) | |
tree | a4efff47471b575d8ed90aa0ae1afd56d5ced281 /krebs/2configs/mastodon.nix | |
parent | 2ca25d5fc3b5bcabe15b0934208b5f5201420eb2 (diff) | |
parent | 9368e6d78abbe1523a2a54279fd4e9db01a4f610 (diff) |
Merge remote-tracking branch 'lass/master'
Diffstat (limited to 'krebs/2configs/mastodon.nix')
-rw-r--r-- | krebs/2configs/mastodon.nix | 14 |
1 files changed, 4 insertions, 10 deletions
diff --git a/krebs/2configs/mastodon.nix b/krebs/2configs/mastodon.nix index af308b2c7..ebc4207a0 100644 --- a/krebs/2configs/mastodon.nix +++ b/krebs/2configs/mastodon.nix @@ -3,7 +3,7 @@ services.postgresql = { enable = true; dataDir = "/var/state/postgresql/${config.services.postgresql.package.psqlSchema}"; - package = pkgs.postgresql_11; + package = pkgs.postgresql_16; }; systemd.tmpfiles.rules = [ "d /var/state/postgresql 0700 postgres postgres -" @@ -13,23 +13,17 @@ enable = true; localDomain = "social.krebsco.de"; configureNginx = true; + streamingProcesses = 3; trustedProxy = config.krebs.hosts.prism.nets.retiolum.ip6.addr; smtp.createLocally = false; smtp.fromAddress = "derp"; }; - services.nginx.virtualHosts.${config.services.mastodon.localDomain} = { - forceSSL = lib.mkForce false; - enableACME = lib.mkForce false; - locations."@proxy".extraConfig = '' - proxy_redirect off; - proxy_pass_header Server; - proxy_set_header X-Forwarded-Proto $http_x_forwarded_proto; - ''; - }; + security.acme.certs."social.krebsco.de".server = "https://acme-staging-v02.api.letsencrypt.org/directory"; networking.firewall.allowedTCPPorts = [ 80 + 443 ]; environment.systemPackages = [ |