1 { pkgs, config, inputs, ... }:
3 inherit (config) networking;
4 inherit (config.services) nginx;
8 (inputs.julm-nix + "/nixos/profiles/services/nginx.nix")
9 nginx/autogeree.net.nix
10 nginx/sourcephile.fr.nix
12 users.groups."acme".members = [ nginx.user ];
13 users.groups."keys".members = [ nginx.user ];
14 networking.nftables.ruleset = ''
17 tcp dport { 80, 443 } counter accept comment "HTTP(S)"
23 package = pkgs.nginx.override {
24 modules = with pkgs.nginxModules; [
29 addresses = [ "127.0.0.1:53" ];
34 useACMEHost = networking.domain;
38 fileSystems."/var/lib/nginx" = {
39 device = "rpool/var/lib/nginx";
43 services.sanoid.datasets."rpool/var/lib/nginx" = {
44 use_template = [ "snap" ];