website: add security.txt #122

Merged
b12f merged 2 commits from feat/security-txt into main 2024-03-25 16:26:18 +00:00

View file

@ -1,6 +1,4 @@
{ ... }: { lib, ... }: {
b12f marked this conversation as resolved Outdated

Need to bring lib into the scope here.

Need to bring `lib` into the scope here.
{
systemd.tmpfiles.rules = [ systemd.tmpfiles.rules = [
"d '/srv/www/pub.solar' 0750 hakkonaut hakkonaut - -" "d '/srv/www/pub.solar' 0750 hakkonaut hakkonaut - -"
]; ];
@ -54,6 +52,22 @@
''; '';
}; };
# Responsible disclosure information https://securitytxt.org/
"/.well-known/security.txt" = let
securityTXT = lib.lists.foldr (a: b: a + "\n" + b) "" [
"Contact: mailto:admins@pub.solar"
"Expires: 2025-01-04T23:00:00.000Z"
"Encryption: https://keys.openpgp.org/vks/v1/by-fingerprint/8A8987ADE3736C8CA2EB315A9B809EBBDD62BAE3"
"Preferred-Languages: en,de"
"Canonical: https://pub.solar/.well-known/security.txt"
];
in {
extraConfig = ''
add_header Content-Type text/plain;
return 200 '${securityTXT}';
'';
};
"/satzung" = { "/satzung" = {
extraConfig = '' extraConfig = ''
return 302 https://cloud.pub.solar/s/iaKqiW25QJpHPYs; return 302 https://cloud.pub.solar/s/iaKqiW25QJpHPYs;