nixos-config/vps-configuration.nix

{  config, modulesPath, lib, pkgs, ... }:
{
  imports = [
    (modulesPath + "/installer/scan/not-detected.nix")
    (modulesPath + "/profiles/qemu-guest.nix")
    ./vps-disk-config.nix
  ];
  boot.loader.grub = {
    # no need to set devices, disko will add all devices that have a EF02 partition to the list already
    # devices = [ ];
    efiSupport = true;
    efiInstallAsRemovable = true;
  };

  environment.systemPackages = with pkgs; [
    curl
  ];

  networking.hostName = "tien";
  # do not use DHCP, as dashserv provisions IPs using cloud-init (see service below)
  networking.useDHCP = pkgs.lib.mkForce false;
  networking.firewall = {
    enable = true;
    allowedTCPPorts = [ 80 443 ];
    trustedInterfaces = [ "tailscale0" ];
  };

  services.caddy = {
    enable = true;
    email = lib.strings.concatStrings ["mail" "@" "johannes-rothe.de"];
    virtualHosts = {
      "johannes-rothe.de".extraConfig = ''
        reverse_proxy base:11112
      '';
      "www.johannes-rothe.de".extraConfig = ''
        reverse_proxy base:11112
      '';
      "cloud.johannes-rothe.de".extraConfig = ''
        reverse_proxy base:5002
      '';
      "feeds.johannes-rothe.de".extraConfig = ''
        reverse_proxy base:1990
      '';
      "git.johannes-rothe.de".extraConfig = ''
        reverse_proxy base:3001
      '';
      "radicale.johannes-rothe.de".extraConfig = ''
        reverse_proxy base:5232
      '';
    };
  };

  services.cloud-init = {
    enable = true;
    network.enable = true;
  };

  services.tailscale.enable = true;

  system.stateVersion = "24.05";
}
Take over a VPS with nixos-anywhere 2024-11-13 22:10:09 +01:00			`{ config, modulesPath, lib, pkgs, ... }:`
			`{`
			`imports = [`
			`(modulesPath + "/installer/scan/not-detected.nix")`
			`(modulesPath + "/profiles/qemu-guest.nix")`
			`./vps-disk-config.nix`
			`];`
			`boot.loader.grub = {`
			`# no need to set devices, disko will add all devices that have a EF02 partition to the list already`
			`# devices = [ ];`
			`efiSupport = true;`
			`efiInstallAsRemovable = true;`
			`};`

Setup caddy server on VPS 2024-11-14 22:38:24 +01:00			`environment.systemPackages = with pkgs; [`
			`curl`
			`];`
Take over a VPS with nixos-anywhere 2024-11-13 22:10:09 +01:00
Setup caddy server on VPS 2024-11-14 22:38:24 +01:00			`networking.hostName = "tien";`
			`# do not use DHCP, as dashserv provisions IPs using cloud-init (see service below)`
Take over a VPS with nixos-anywhere 2024-11-13 22:10:09 +01:00			`networking.useDHCP = pkgs.lib.mkForce false;`
Setup caddy server on VPS 2024-11-14 22:38:24 +01:00			`networking.firewall = {`
Take over a VPS with nixos-anywhere 2024-11-13 22:10:09 +01:00			`enable = true;`
Setup caddy server on VPS 2024-11-14 22:38:24 +01:00			`allowedTCPPorts = [ 80 443 ];`
			`trustedInterfaces = [ "tailscale0" ];`
Take over a VPS with nixos-anywhere 2024-11-13 22:10:09 +01:00			`};`

Setup caddy server on VPS 2024-11-14 22:38:24 +01:00			`services.caddy = {`
Take over a VPS with nixos-anywhere 2024-11-13 22:10:09 +01:00			`enable = true;`
Setup caddy server on VPS 2024-11-14 22:38:24 +01:00			`email = lib.strings.concatStrings ["mail" "@" "johannes-rothe.de"];`
			`virtualHosts = {`
			`"johannes-rothe.de".extraConfig = ''`
			`reverse_proxy base:11112`
			`'';`
			`"www.johannes-rothe.de".extraConfig = ''`
			`reverse_proxy base:11112`
			`'';`
			`"cloud.johannes-rothe.de".extraConfig = ''`
			`reverse_proxy base:5002`
			`'';`
			`"feeds.johannes-rothe.de".extraConfig = ''`
			`reverse_proxy base:1990`
			`'';`
			`"git.johannes-rothe.de".extraConfig = ''`
			`reverse_proxy base:3001`
			`'';`
			`"radicale.johannes-rothe.de".extraConfig = ''`
			`reverse_proxy base:5232`
			`'';`
			`};`
Take over a VPS with nixos-anywhere 2024-11-13 22:10:09 +01:00			`};`

Setup caddy server on VPS 2024-11-14 22:38:24 +01:00			`services.cloud-init = {`
			`enable = true;`
			`network.enable = true;`
			`};`
Take over a VPS with nixos-anywhere 2024-11-13 22:10:09 +01:00
Setup caddy server on VPS 2024-11-14 22:38:24 +01:00			`services.tailscale.enable = true;`
Take over a VPS with nixos-anywhere 2024-11-13 22:10:09 +01:00
			`system.stateVersion = "24.05";`
			`}`