nki/nix-home
1
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity

Abstract over traefik config!

Browse source
This commit is contained in:
Natsu Kagami 2021-11-01 14:41:55 -04:00
parent 2899de625f
commit 6ba98bf0c3
Signed by: nki
GPG key ID: 7306B3D3C3AD6E51
4 changed files with 75 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

18
modules/cloud/bitwarden/default.nix
View file

@ -10,6 +10,7 @@ let
user = "bitwarden";
port = 8001;
notificationsPort = 8002;
in
{
options.cloud.bitwarden = { };
@ -24,15 +25,15 @@ in
# database
cloud.postgresql.databases = [ databaseUser ];
# traefik
cloud.traefik.config.http.routers.bitwarden = {
rule = "Host(`bw.nkagami.me`)";
entrypoints = "https";
tls.certResolver = "le";
service = "bitwarden";
cloud.traefik.hosts.bitwarden = {
inherit port;
host = "bw.nkagami.me";
};
cloud.traefik.hosts.bitwarden-notifications = {
port = notificationsPort;
host = "bw.nkagami.me";
path = "/notifications/hub";
};
cloud.traefik.config.http.services.bitwarden.loadBalancer.servers = [
{ url = "http://localhost:${toString port}"; }
];
# systemd unit
systemd.services.bitwarden-server = {
after = [ "network.target" ];
@ -46,6 +47,7 @@ in
WEB_VAULT_FOLDER = "${pkgs.unstable.vaultwarden-vault}/share/vaultwarden/vault";
ROCKET_PORT = toString port;
WEBSOCKET_PORT = toString notificationsPort;
};
serviceConfig = {
User = user;