peperunas/nixos
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

prosody: Opened c2s and s2s ports. Cleaned up config

Browse Source
This commit is contained in:
Giulio De Pasquale 2023-02-21 01:28:58 +01:00
parent 83c741a107
commit b9060ba7c2
1 changed files with 20 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
hosts/architect/prosody.nix
View File

@ -7,17 +7,20 @@ let
network = import ./network.nix; network = import ./network.nix;
in in
{ {
architect.firewall = {
openTCP = [ 5222 5269 ];
};
services = { services = {
prosody = { prosody = {
enable = true; enable = true;
virtualHosts = { virtualHosts.${domain} = {
"${domain}" = { inherit domain;
domain = domain;
enabled = true; enabled = true;
ssl.key = "${config.security.acme.certs.${domain}.directory}/key.pem"; ssl.key = "${config.security.acme.certs.${domain}.directory}/key.pem";
ssl.cert = ssl.cert =
"${config.security.acme.certs.${domain}.directory}/fullchain.pem"; "${config.security.acme.certs.${domain}.directory}/fullchain.pem";
};
}; };
muc = [{ domain = conference_domain; }]; muc = [{ domain = conference_domain; }];
@ -27,11 +30,16 @@ in
#httpInterfaces = [ "wg0" ]; #httpInterfaces = [ "wg0" ];
#httpsInterfaces = [ "wg0" ]; #httpsInterfaces = [ "wg0" ];
}; };
};
services.nginx.virtualHosts."${domain}".enableACME = true; nginx.virtualHosts = {
#services.nginx.virtualHosts."${conference_domain}".enableACME = true; "${domain}" = {
#services.nginx.virtualHosts."${upload_domain}".enableACME = true; enableACME = true;
forceSSL = true;
};
# "${conference_domain}".enableACME = true;
# "${upload_domain}".enableACME = true;
};
};
networking.extraHosts = '' networking.extraHosts = ''
${network.architect-lan} ${domain} ${network.architect-lan} ${domain}