diff --git a/hosts/fae/default.nix b/hosts/fae/default.nix
index 5c1ef737..b0e070a4 100644
--- a/hosts/fae/default.nix
+++ b/hosts/fae/default.nix
@@ -4,6 +4,7 @@
./actual.nix
./paperless.nix
./invoiceplane.nix
+ ./vikunja.nix
./fae.nix
];
}
diff --git a/hosts/fae/vikunja.nix b/hosts/fae/vikunja.nix
new file mode 100644
index 00000000..a71cffbb
--- /dev/null
+++ b/hosts/fae/vikunja.nix
@@ -0,0 +1,37 @@
+{
+ flake,
+ config,
+ pkgs,
+ lib,
+ ...
+}:
+let
+ psCfg = config.pub-solar;
+ xdg = config.home-manager.users."${psCfg.user.name}".xdg;
+in
+{
+ age.secrets.vikunja-secret-env = {
+ file = "${flake.self}/secrets/vikunja-secret-env.age";
+ mode = "400";
+ owner = "vikunja";
+ };
+
+ security.acme.certs = {
+ "viku.faenix.eu" = { };
+ };
+
+ services.nginx.virtualHosts = {
+ "viku.faenix.eu" = {
+ forceSSL = true;
+ useACMEHost = "viku.faenix.eu";
+ locations."/".proxyPass = "http://127.0.0.1:${builtins.toString config.services.vikunja.port}";
+ };
+ };
+
+ services.vikunja = {
+ enable = true;
+ frontendScheme = "https";
+ frontendHostname = "viku.faenix.eu";
+ environmentFiles = [ config.age.secrets."vikunja-secret-env".path ];
+ };
+}
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index eb525e2e..e3bf9399 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -42,4 +42,9 @@ in
users.teutat3s
users.teutat3s-5-nfc
];
+ "vikunja-secret-env.age".publicKeys = [
+ machines.fae
+ users.teutat3s
+ users.teutat3s-5-nfc
+ ];
}
diff --git a/secrets/vikunja-secret-env.age b/secrets/vikunja-secret-env.age
new file mode 100644
index 00000000..0538ec32
--- /dev/null
+++ b/secrets/vikunja-secret-env.age
@@ -0,0 +1,9 @@
+age-encryption.org/v1
+-> ssh-ed25519 P2sgew gaS2H1hExnxJwIZMEJeuFMIA2a9xOCfg2nXhd4h0dF8
+Rco//RzvvlMOjtlXoJxN/dCXQzL8uqLrvWag5Sjpae4
+-> ssh-ed25519 BVsyTA F5j277roMmsjxEPiYdgqIgsrdZISTDJlyFvUsS0EYzA
+AirKnvaHnwZLtB3XEtf1f1CrAtUQRsDXa+9noz7ricY
+-> piv-p256 xGzyzw A2HdwWrgUnK1iOHRZriavJtwcefyyi/qEPDpYxCRIBPA
+Y0x3o4Qt+A0Vx7cJtpeWD+ntz7n9W+8+r5esq8bAyro
+--- YWKAYYv6tL9HMhG7mO/T/co/li+A4hLRznAQ+qZUVUo
+��.@r��
����U���>���r���bӧ28�?���f���3��և�����"9J�x��7ֈ72Y��y�q��)yU����J��rF��ݵ}���x�Z7��;yq=�U�p
\ No newline at end of file