Bruno BELANYI
5fcc96ab77
This is a requirement anyway for homeservers, and the `forceSSL` option
tried to create a redirect for non-SSL traffic, except the `listen`
option only provided SSL endpoints anyway, so this resulted in
additional rules in the nginx config looking like this:
```nginx
server {
server_name matrix.belanyi.fr ;
location /.well-known/acme-challenge {
root /var/lib/acme/acme-challenge;
auth_basic off;
}
location / {
return 301 https://$host$request_uri;
}
}
```
|
||
|---|---|---|
| .git-crypt | ||
| home | ||
| lib | ||
| machines | ||
| modules | ||
| overlays | ||
| pkgs | ||
| profiles | ||
| secrets | ||
| .drone.yml | ||
| .envrc | ||
| .gitignore | ||
| bootstrap.sh | ||
| flake.lock | ||
| flake.nix | ||
| README.md | ||
Nix-config
My NixOS-based system configuration files.
Currently only used as an experiment to self-host a new server.
Steps
First build using flakes:
sudo nixos-rebuild switch --flake .
Secondly, take care of a few manual steps:
- Configure Gitea and Drone
- Configure Lohr webhook and SSH key
- Configure Jellyfin
- Configure Jackett and NZBHydra2
- Configure Sonarr, Radarr, Bazarr
- Configure Transmission's webui port
- Configure Quassel user
- Configure Flood account