nixos-config/machines/fuuko/services/media.nix

27 lines
656 B
Nix
Raw Normal View History

{ config, ... }:
2021-03-05 16:12:25 +01:00
{
sops.secrets.media-htpasswd.owner = "nginx";
2021-03-05 16:12:25 +01:00
services.nginx.virtualHosts."media.sbruder.de" = {
enableACME = true;
forceSSL = true;
basicAuthFile = config.sops.secrets.media-htpasswd.path;
2021-03-05 16:12:25 +01:00
root = "/data/media/";
};
services.nginx-interactive-index.virtualHosts."media.sbruder.de".locations."/".enable = true;
2022-05-14 17:50:11 +02:00
users.users.media = {
home = "/data/media";
isSystemUser = true;
group = "media";
openssh.authorizedKeys.keys = [
"restrict,command=\"internal-sftp\" ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMt91kAEA7ezIdve/64sv1kV4sd50ayzM09f5s5uOD+V"
];
};
users.groups.media = { };
2021-03-05 16:12:25 +01:00
}