hedgedoc: use socket
This commit is contained in:
parent
3ac98bf8d4
commit
6c23fa359b
|
@ -29,6 +29,7 @@
|
||||||
defaultPermission = "freely";
|
defaultPermission = "freely";
|
||||||
domain = "hedgedoc.c3d2.de";
|
domain = "hedgedoc.c3d2.de";
|
||||||
loglevel = "warn";
|
loglevel = "warn";
|
||||||
|
path = "/run/hedgedoc/hedgedoc.sock";
|
||||||
protocolUseSSL = true;
|
protocolUseSSL = true;
|
||||||
sessionSecret = "$sessionSecret";
|
sessionSecret = "$sessionSecret";
|
||||||
};
|
};
|
||||||
|
@ -38,6 +39,7 @@
|
||||||
nginx = {
|
nginx = {
|
||||||
enable = true;
|
enable = true;
|
||||||
enableReload = true;
|
enableReload = true;
|
||||||
|
upstreams.hedgedoc.servers."unix:${config.services.hedgedoc.settings.path}" = { };
|
||||||
virtualHosts = {
|
virtualHosts = {
|
||||||
"codimd.c3d2.de" = {
|
"codimd.c3d2.de" = {
|
||||||
forceSSL = true;
|
forceSSL = true;
|
||||||
|
@ -55,7 +57,7 @@
|
||||||
enableACME = true;
|
enableACME = true;
|
||||||
locations = {
|
locations = {
|
||||||
"^~ /robots.txt".return = "200 'User-agent: *\\nDisallow: /'";
|
"^~ /robots.txt".return = "200 'User-agent: *\\nDisallow: /'";
|
||||||
"/".proxyPass = "http://localhost:${toString config.services.hedgedoc.settings.port}";
|
"/".proxyPass = "http://hedgedoc";
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
@ -89,5 +91,14 @@
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
|
systemd = {
|
||||||
|
services.hedgedoc.serviceConfig.UMask = "0007";
|
||||||
|
tmpfiles.rules = [
|
||||||
|
"d /run/hedgedoc/ 0770 hedgedoc hedgedoc -"
|
||||||
|
];
|
||||||
|
};
|
||||||
|
|
||||||
system.stateVersion = "22.11";
|
system.stateVersion = "22.11";
|
||||||
|
|
||||||
|
users.users.nginx.extraGroups = [ "hedgedoc" ];
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in New Issue
Block a user