nix-config/hosts/owncast/default.nix

{ config, pkgs, ... }:

{
  imports = [
    ./owncast-archiver.nix
  ];

  c3d2 = {
    deployment = {
      mounts = [ "archive" ];
      server = "server10";
    };
    hq.statistics.enable = true;
  };

  networking.hostName = "owncast";

  services = {
    backup = {
      enable = true;
      paths = [ "/var/lib/owncast/" ];
    };

    nginx = {
      enable = true;
      additionalModules = [ pkgs.nginxModules.fancyindex ];
      virtualHosts."owncast.c3d2.de" = {
        default = true;
        forceSSL = true;
        enableACME = true;

        locations = {
          "/" = {
            proxyPass = "http://127.0.0.1:${toString config.services.owncast.port}";
            proxyWebsockets = true;
          };
          "/archive".return = "307 /archive/";
          "/archive/" = {
            alias = "${config.services.owncast-archiver.targetDir}/";
            extraConfig = ''
              fancyindex on;
              fancyindex_exact_size off;
            '';
          };
        };
      };
    };
    owncast = {
      enable = true;
      openFirewall = true;
    };
  };

  sops.defaultSopsFile = ./secrets.yaml;

  systemd.services.nginx.serviceConfig.ReadWritePaths = [
    config.services.owncast-archiver.targetDir
  ];

  services.owncast-archiver.enable = true;

  system.stateVersion = "23.05";
}
owncast: fix nginx fancyindex 2022-12-12 21:20:41 +01:00			`{ config, pkgs, ... }:`
owncast: init 2022-11-21 19:39:38 +01:00
			`{`
owncast: add archiver 2022-12-12 21:57:00 +01:00			`imports = [`
			`./owncast-archiver.nix`
			`];`

owncast: move out of skyflake 2023-11-11 04:24:58 +01:00			`c3d2 = {`
owncast: fix /archive creation, persist share 2023-11-27 01:36:00 +01:00			`deployment = {`
			`mounts = [ "archive" ];`
			`server = "server10";`
			`};`
owncast: move out of skyflake 2023-11-11 04:24:58 +01:00			`hq.statistics.enable = true;`
owncast: init 2022-11-21 19:39:38 +01:00			`};`
owncast: move out of skyflake 2023-11-11 04:24:58 +01:00
Handle nginx open firewall by nixos-modules 2022-12-20 04:31:37 +01:00			`networking.hostName = "owncast";`
owncast: init 2022-11-21 19:39:38 +01:00
owncast: format 2023-09-15 22:57:53 +02:00			`services = {`
owncast: move out of skyflake 2023-11-11 04:24:58 +01:00			`backup = {`
			`enable = true;`
			`paths = [ "/var/lib/owncast/" ];`
			`};`

owncast: format 2023-09-15 22:57:53 +02:00			`nginx = {`
			`enable = true;`
			`additionalModules = [ pkgs.nginxModules.fancyindex ];`
			`virtualHosts."owncast.c3d2.de" = {`
			`default = true;`
			`forceSSL = true;`
			`enableACME = true;`
owncast: init 2022-11-21 19:39:38 +01:00
owncast: format 2023-09-15 22:57:53 +02:00			`locations = {`
			`"/" = {`
			`proxyPass = "http://127.0.0.1:${toString config.services.owncast.port}";`
			`proxyWebsockets = true;`
			`};`
			`"/archive".return = "307 /archive/";`
			`"/archive/" = {`
			`alias = "${config.services.owncast-archiver.targetDir}/";`
			`extraConfig = ''`
			`fancyindex on;`
			`fancyindex_exact_size off;`
			`'';`
			`};`
			`};`
owncast: mount archive 2022-12-12 21:15:04 +01:00			`};`
owncast: init 2022-11-21 19:39:38 +01:00			`};`
owncast: format 2023-09-15 22:57:53 +02:00			`owncast = {`
			`enable = true;`
			`openFirewall = true;`
			`};`
owncast: init 2022-11-21 19:39:38 +01:00			`};`
owncast: format 2023-09-15 22:57:53 +02:00
Reduce copy pasting of sops 2023-11-11 04:34:05 +01:00			`sops.defaultSopsFile = ./secrets.yaml;`
owncast: move out of skyflake 2023-11-11 04:24:58 +01:00
owncast: add archiver 2022-12-12 21:57:00 +01:00			`systemd.services.nginx.serviceConfig.ReadWritePaths = [`
			`config.services.owncast-archiver.targetDir`
			`];`

			`services.owncast-archiver.enable = true;`
owncast: move out of skyflake 2023-11-11 04:24:58 +01:00
			`system.stateVersion = "23.05";`
owncast: init 2022-11-21 19:39:38 +01:00			`}`