hacc/haccfiles
8
0
Fork 1
Code Issues 1 Pull requests Projects Releases Wiki Activity

Hasenloch (Engelsystem for divoc)

Browse source 
Seems to work fine, except for the domain — the engelsystem tries
to load its ressources from the IP of the container instead of its
url set in the config.
This commit is contained in:
stuebinm 2021-02-20 22:41:19 +01:00
parent 1a8842457d
commit 8c083034db
2 changed files with 64 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
hosts/hainich/configuration.nix
View file

@ -16,6 +16,7 @@
./services/docker.nix
./services/gitlab-runner.nix
./services/lantifa.nix
./services/hasenloch.nix
./services/syncthing.nix
./services/monitoring.nix
];

63
hosts/hainich/services/hasenloch.nix Normal file
View file

@ -0,0 +1,63 @@
{ pkgs, config, ...}:
{
containers.hasenloch = {
autoStart = true;
privateNetwork = true;
hostAddress6 = "fd00::42:14";
localAddress6 = "fd00::42:18";
config = { pkgs, config, ...}: {
services.engelsystem = {
enable = true;
domain = "himmel.hacc.earth";
config = {
url = "https://himmel.hacc.earth";
app_name = "Hasenloch";
footer_items = {
FAQ = "TODO";
Contact = "TODO";
};
signup_requires_arrival = true;
enable_dect = false;
theme = 10;
database = {
database = "engelsystem";
host = "localhost";
username = "engelsystem";
};
email = {
driver = "smtp";
encryption = "tls";
from = {
address = "noreply@infra4future.de";
name = "divoc Hasenloch";
};
host = "mail.hacc.space";
password = {
_secret = "/var/keys/engelsystem/mail";
};
port = 587;
username = "noreply@infra4future.de";
};
};
};
networking.firewall.allowedTCPPorts = [ 80 ];
};
};
services.nginx.virtualHosts."himmel.hacc.earth" = {
locations."/".proxyPass = "http://[" + config.containers.hasenloch.localAddress6 + "]";
forceSSL = true;
enableACME = true;
};
}