axeman/pub-solar-os
1
0
Fork 0
forked from pub-solar/os
Code Issues Pull requests Packages Projects Releases Wiki Activity

Add local https openproject development config

Browse source
This commit is contained in:
Benjamin Bädorf 2022-10-24 21:41:11 +02:00
parent fcda8886b2
commit d25308c87a
No known key found for this signature in database
GPG key ID: 4406E80E13CD656C
3 changed files with 36 additions and 8 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
hosts/chocolatebar/chocolatebar.nix
View file

@ -23,7 +23,7 @@ in
pub-solar.core.hibernation.resumeOffset = 115075072; pub-solar.core.hibernation.resumeOffset = 115075072;
services.openssh.openFirewall = true; services.openssh.openFirewall = true;
networking.firewall.allowedTCPPorts = mkIf psCfg.sway.vnc.enable [ 5901 ]; networking.firewall.allowedTCPPorts = [ 443 ] ++ (if psCfg.sway.vnc.enable then [ 5901 ] else [ ]);
environment.systemPackages = with pkgs; [ environment.systemPackages = with pkgs; [
wayvnc wayvnc
@ -55,5 +55,10 @@ in
NIX_CC = "${pkgs.stdenv.cc}"; NIX_CC = "${pkgs.stdenv.cc}";
}; };
}; };
# For OpenProject development with https
security.pki.certificates = [
(builtins.readFile ./step-roots.pem)
];
}; };
} }

13
hosts/chocolatebar/step-roots.pem Normal file
View file

@ -0,0 +1,13 @@
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

24
users/ben/default.nix
View file

@ -38,12 +38,22 @@ in
audio.spotify.username = "spotify@benjaminbaedorf.eu"; audio.spotify.username = "spotify@benjaminbaedorf.eu";
}; };
networking.hosts = { # Needed for the udev rules for solaar
"127.0.0.1" = [ hardware.logitech.wireless.enable = true;
"openproject.local" networking.hosts =
"saas-1.openproject.local" let
"transmission.local" localDomains = [
]; "openproject.local"
}; "traefik.local"
"nextcloud.local"
"step.local"
"saas-1.openproject.local"
"transmission.local"
];
in
{
"127.0.0.1" = localDomains;
"::1" = localDomains;
};
}; };
} }