nixos/hosts/architect/headscale.nix

{ config, pkgs, ... }:

let
  domain = "vipienne.giugl.io";
  headscalePkg = pkgs.headscale;
in
{
  environment.systemPackages = [ headscalePkg ];

  architect = {
    firewall = {
      openUDP = [ config.services.tailscale.port ];
    };

    vhost.${domain} = {
      dnsInterfaces = [ "lan" "tailscale" ];
      locations."/" = {
        port = config.services.headscale.port;
        allowWAN = true;
        proxyWebsockets = true;
      };
    };
  };

  services.headscale = {
    enable = true;
    package = headscalePkg;
    port = 1194;

    settings = {
      server_url = "https://${domain}";
      # log.level = "debug";
      dns = {
        magic_dns = false;
        # base_domain = domain;
        override_local_dns = true;
        global = [
          config.architect.networks.tailscale.devices.architect.address
        ];
        nameservers.global = [
          config.architect.networks.tailscale.devices.architect.address
        ];
      };
      logtail.enabled = false;
      prefixes.v4 = config.architect.networks.tailscale.net;
      noise.private_key_path = "/var/lib/headscale/noise_private.key";
    };
  };
}
headscale: use architect options 2024-01-30 23:33:56 +00:00			`{ config, pkgs, ... }:`
headscale: init 2023-05-06 14:04:25 +01:00
			`let`
fix(headscale.nix): update domain and package reference - Updated `domain` to use a single string "vipienne.giugl.io" - Changed `headscalePkg` to use the stable `pkgs.headscale` instead of `pkgs.unstablePkgs.headscale` - Corrected `base_domain` in `dns_config` to use the updated `domain` variable 2024-11-17 20:30:42 +00:00			`domain = "vipienne.giugl.io";`
			`headscalePkg = pkgs.headscale;`
headscale: init 2023-05-06 14:04:25 +01:00			`in`
			`{`
headscale: use architect options 2024-01-30 23:33:56 +00:00			`environment.systemPackages = [ headscalePkg ];`
headscale: add binary to path 2023-07-07 01:16:40 +01:00
headscale: use architect options 2024-01-30 23:33:56 +00:00			`architect = {`
			`firewall = {`
			`openUDP = [ config.services.tailscale.port ];`
headscale: init 2023-05-06 14:04:25 +01:00			`};`

headscale: use architect options 2024-01-30 23:33:56 +00:00			`vhost.${domain} = {`
			`dnsInterfaces = [ "lan" "tailscale" ];`
headscale: init 2023-05-06 14:04:25 +01:00			`locations."/" = {`
headscale: use architect options 2024-01-30 23:33:56 +00:00			`port = config.services.headscale.port;`
			`allowWAN = true;`
headscale: init 2023-05-06 14:04:25 +01:00			`proxyWebsockets = true;`
			`};`
			`};`
			`};`
headscale: use architect options 2024-01-30 23:33:56 +00:00
			`services.headscale = {`
			`enable = true;`
			`package = headscalePkg;`
architect: set port 1194 for headscale 2024-02-21 11:33:08 +00:00			`port = 1194;`
refactor(headscale.nix): update settings structure and add comments - Updated `dns_config` to `dns` and adjusted nested fields accordingly. - Commented out default log level and base domain for clarity. - Changed `ip_prefixes` to `prefixes.v4` to match expected configuration format. 2024-11-18 19:57:06 +00:00
headscale: use architect options 2024-01-30 23:33:56 +00:00			`settings = {`
			`server_url = "https://${domain}";`
refactor(headscale.nix): update settings structure and add comments - Updated `dns_config` to `dns` and adjusted nested fields accordingly. - Commented out default log level and base domain for clarity. - Changed `ip_prefixes` to `prefixes.v4` to match expected configuration format. 2024-11-18 19:57:06 +00:00			`# log.level = "debug";`
			`dns = {`
headscale: use architect options 2024-01-30 23:33:56 +00:00			`magic_dns = false;`
refactor(headscale.nix): update settings structure and add comments - Updated `dns_config` to `dns` and adjusted nested fields accordingly. - Commented out default log level and base domain for clarity. - Changed `ip_prefixes` to `prefixes.v4` to match expected configuration format. 2024-11-18 19:57:06 +00:00			`# base_domain = domain;`
headscale: use architect options 2024-01-30 23:33:56 +00:00			`override_local_dns = true;`
refactor(headscale.nix): update settings structure and add comments - Updated `dns_config` to `dns` and adjusted nested fields accordingly. - Commented out default log level and base domain for clarity. - Changed `ip_prefixes` to `prefixes.v4` to match expected configuration format. 2024-11-18 19:57:06 +00:00			`global = [`
			`config.architect.networks.tailscale.devices.architect.address`
			`];`
			`nameservers.global = [`
headscale: use architect options 2024-01-30 23:33:56 +00:00			`config.architect.networks.tailscale.devices.architect.address`
			`];`
			`};`
			`logtail.enabled = false;`
refactor(headscale.nix): update settings structure and add comments - Updated `dns_config` to `dns` and adjusted nested fields accordingly. - Commented out default log level and base domain for clarity. - Changed `ip_prefixes` to `prefixes.v4` to match expected configuration format. 2024-11-18 19:57:06 +00:00			`prefixes.v4 = config.architect.networks.tailscale.net;`
headscale: use architect options 2024-01-30 23:33:56 +00:00			`noise.private_key_path = "/var/lib/headscale/noise_private.key";`
			`};`
			`};`
headscale: init 2023-05-06 14:04:25 +01:00			`}`