summaryrefslogtreecommitdiff
path: root/host/software/server/website.nix
blob: 0a72e4780eb6a5e4e8b7089a7bcffad624450a89 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
{ pkgs, ... }:

{
  users.extraUsers.public = {
    isNormalUser = true;
    uid          = 2000;
    shell        = pkgs.fish;
  };

  systemd.services.nginx.serviceConfig.ProtectHome = false;

  # `public` generates websites using their custom derivations via `nix-build`
  services.nginx.virtualHosts = let

    default = locations: {
      inherit locations;
      addSSL     = true;
      enableACME = true;
    };

    website = sub: default {
      "/".root = "/home/public/${sub}/result";
      "/".extraConfig = ''
        location ~* \.(?:html?|xml)$ {
          expires -1;
        }
      '';
    };

    proxy = target: {
      proxyPass  = target;
      extraConfig = ''
        expires off;
        proxy_set_header Host code.kummerlaender.eu;
      '';
    };
  in {
    "kummerlaender.eu"        = website "overview";
    "blog.kummerlaender.eu"   = website "blog";
    "blip.kummerlaender.eu"   = website "blip";
    "tree.kummerlaender.eu"   = website "tree";
    "static.kummerlaender.eu" = website "static" // {
      extraConfig = ''
        add_header Access-Control-Allow-Origin *;
      '';
    };

    "pkgs.kummerlaender.eu" = default {
      "/".root = "/home/public/pkgs/result";
      "/nixexprs.tar.gz"  = proxy "http://code.kummerlaender.eu/pkgs/snapshot/master.tar.gz";
      "/nixexprs.tar.xz"  = proxy "http://code.kummerlaender.eu/pkgs/snapshot/master.tar.xz";
      "/nixexprs.tar.bz2" = proxy "http://code.kummerlaender.eu/pkgs/snapshot/master.tar.bz2";
    };

    "literatelb.org"      = website "literatelb";
  };
}