ctucx.git: nixfiles

ctucx' nixfiles

commit ce627ff71e421e488c2ed6ae87e7f94f3e384e59
parent 20fb0818c5998043efa5d691dca8adbf65e911bd
Author: Leah (ctucx) <git@ctu.cx>
Date: Tue, 22 Oct 2024 15:56:04 +0200

machines/briefkasten/websites: remove `wiki.home.ctu.cx`

3 files changed, 0 insertions(+), 80 deletions(-)
M
configurations/common/syncthing-config.nix
|
11
-----------
M
machines/briefkasten/websites/default.nix
|
1
-
D
machines/briefkasten/websites/wiki.home.ctu.cx.nix
|
68
--------------------------------------------------------------------
diff --git a/configurations/common/syncthing-config.nix b/configurations/common/syncthing-config.nix
@@ -156,16 +156,5 @@ in {
       };
     };
 
-    "${dataDir}/Wiki" = {
-      enable            = lib.mkDefault true;
-      id                = "ctucx-wiki";
-      label             = "Wiki";
-      devices           = (lib.mkMerge [ deviceNames]);
-      versioning.type   = "staggered";
-      versioning.params = {
-        maxAge = "2592000";
-      };
-    };
-
   };
 }

diff --git a/machines/briefkasten/websites/default.nix b/machines/briefkasten/websites/default.nix
@@ -3,7 +3,6 @@
 {
 
   imports = [
-    ./wiki.home.ctu.cx.nix
     ./music.home.ctu.cx.nix
     ./audiobooks.home.ctu.cx.nix
 #    ./storage.home.ctu.cx

diff --git a/machines/briefkasten/websites/wiki.home.ctu.cx.nix b/machines/briefkasten/websites/wiki.home.ctu.cx.nix
@@ -1,68 +0,0 @@
-{ config, pkgs, lib, ... }:
-
-{
-
-#  dns.zones."ctu.cx".subdomains."wiki.home".CNAME = [ "${config.networking.fqdn}." ];
-  services.dnsmasq.settings.cname                 = [ "wiki.home.ctu.cx, ${config.networking.fqdn}" ];
-
-  fileSystems."/mnt/wiki" = {
-    device = "/nix/persist/home/leah/syncthing/Wiki";
-    options = [ "bind" "ro" ];
-  };
-
-  users.users.hugo-wiki = {
-    isSystemUser = true;
-    home         = "/var/lib/hugo-wiki";
-    group        = "nginx";
-  };
-
-  systemd.services.hugo-wiki = {
-    wantedBy  = [ "multi-user.target" ];
-    onFailure = [ "email-notify@%i.service" ];
-
-    serviceConfig = {
-      User                    = "hugo-wiki";
-      Group                   = "nginx";
-
-      StateDirectory          = "hugo-wiki";
-      WorkingDirectory        = "/var/lib/hugo-wiki";
-      ReadWritePaths          = [ "/var/lib/hugo-wiki" ];
-
-      PrivateTmp              = true;
-      ProtectHome             = true;
-      ProtectSystem           = "strict";
-      ProtectKernelTunables   = true;
-      ProtectHostname         = true;
-      ProtectClock            = true;
-      ProtectControlGroups    = true;
-      RestrictAddressFamilies = "";
-
-      NoNewPrivileges         = true;
-      PrivateDevices          = true;
-      RestrictSUIDSGID        = true;
-      ProtectKernelModules    = true;
-      MemoryDenyWriteExecute  = true;
-      RestrictNamespaces      = true;
-      RestrictRealtime        = true;
-      LockPersonality         = true;
-
-      ExecStart               = "${pkgs.unstable.hugo}/bin/hugo --source /mnt/wiki --destination /var/lib/hugo-wiki --noBuildLock --watch --cleanDestinationDir --verbose --minify";
-
-      Restart                 = "on-failure";
-      RestartSec              = "5";
-    };
-  };
-
-
-  services.nginx = {
-    enable = true;
-    virtualHosts."wiki.home.ctu.cx" = {
-      enableACME = lib.mkIf config.networking.usePBBUplink true;
-      forceSSL   = lib.mkIf config.networking.usePBBUplink true;
-      kTLS       = lib.mkIf config.networking.usePBBUplink true;
-      root       = "/var/lib/hugo-wiki";
-    };
-  };
-
-}
-