syncoid: fix keys rights and known_hosts

[sourcephile-nix.git] / machines / mermet / nginx / sourcephile.fr / www.nix

{ domain, ... }:
{ pkgs, lib, config, ... }:
let inherit (config) networking;
    inherit (config.services) nginx;
    srv = "www";
in
{
systemd.services.nginx.serviceConfig = {
  BindPaths = [ "/home/julm/work/sourcephile/txt:/www" ];
};
services.nginx = {
  virtualHosts."${srv}" = {
    serverName = "${srv}.${domain}";
    serverAliases = [ domain ];
    forceSSL = true;
    useACMEHost = domain;
    root = "/www";
    extraConfig = ''
      access_log /var/log/nginx/${domain}/${srv}/access.log json buffer=32k;
      error_log  /var/log/nginx/${domain}/${srv}/error.log warn;
    '';
    locations."/".extraConfig = ''
      #autoindex on;
      fancyindex on;
      fancyindex_name_length 255;
      fancyindex_exact_size off;
    '';
    locations."/git".return = "302 https://git.${domain}/$request_uri";
    locations."/versions".return = "302 https://git.${domain}/$request_uri";
    locations."/codes_sources".return = "302 http://git.${domain}";
    locations."/mails".return = "302 https://mails.${domain}/$request_uri";
    locations."/listes".return = "302 https://mails.${domain}/$request_uri";
  };
};
systemd.services.nginx.serviceConfig.LogsDirectory = lib.mkForce ["nginx/${domain}/${srv}"];
}