From fe6edd54b141a1aee7486ef0534689f9f54bbd62 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Benjamin=20B=C3=A4dorf?= Date: Sun, 29 Oct 2023 15:34:25 +0100 Subject: [PATCH] feat: searx --- hosts/nachtigall/apps/searx.nix | 69 +++++++++++++++++++++++++++++++++ hosts/nachtigall/default.nix | 1 + 2 files changed, 70 insertions(+) create mode 100644 hosts/nachtigall/apps/searx.nix diff --git a/hosts/nachtigall/apps/searx.nix b/hosts/nachtigall/apps/searx.nix new file mode 100644 index 00000000..8e71719d --- /dev/null +++ b/hosts/nachtigall/apps/searx.nix @@ -0,0 +1,69 @@ +{ + flake, + config, + lib, + pkgs, + ... +}: +{ + age.secrets.searx-environment = { + file = "${flake.self}/secrets/searx-environment.age"; + mode = "700"; + }; + + services.nginx.virtualHosts."search.pub.solar" = { + enableACME = true; + forceSSL = true; + + locations."/".proxyPass = "http://unix:/run/searx/searx.socket"; + }; + + users.users.nginx.extraGroups = [ "searx" ]; + + services.searx = { + enable = true; + runInUwsgi = true; + package = searxng; + + uwsgiConfig = { + disable-logging = true; + socket = "/run/searx/searx.sock"; + chmod-socket = "660"; + }; + + environmentFile = config.age.secrets.searx-environment.path; + + settings = { + use_default_settings: true; + server.secret_key = "@SEARX_SECRET_KEY@"; + + general = { + instance_name = "search.pub.solar"; + privacypolicy_url: "https://pub.solar/privacy"; + # use true to use your own donation page written in searx/info/en/donate.md + # use false to disable the donation link + donation_url: false + # mailto:contact@example.com + contact_url: false + enable_metrics: false + }; + + search = { + # Existing autocomplete backends: "dbpedia", "duckduckgo", "google", "yandex", "mwmbl", + # "seznam", "startpage", "swisscows", "qwant", "wikipedia" - leave blank to turn it off + # by default. + autocomplete: "duckduckgo" + # minimun characters to type before autocompleter starts + autocomplete_min: 4 + }; + + ui = { + # query_in_title: When true, the result page's titles contains the query + # it decreases the privacy, since the browser can records the page titles. + query_in_title = false; + # infinite_scroll: When true, automatically loads the next page when scrolling to bottom of the current page. + infinite_scroll = false; + }; + }; + }; +} diff --git a/hosts/nachtigall/default.nix b/hosts/nachtigall/default.nix index f4c1ed82..067b5a50 100644 --- a/hosts/nachtigall/default.nix +++ b/hosts/nachtigall/default.nix @@ -21,6 +21,7 @@ ./apps/nginx-website.nix ./apps/opensearch.nix ./apps/postgresql.nix + ./apps/searx.nix ./apps/matrix/mautrix-telegram.nix ./apps/matrix/synapse.nix