update authentik and remove cloudflare services
This commit is contained in:
parent
009107c471
commit
b60d302c50
6 changed files with 1 additions and 96 deletions
|
@ -21,8 +21,6 @@
|
||||||
./services/authentik.nix
|
./services/authentik.nix
|
||||||
./services/avahi.nix
|
./services/avahi.nix
|
||||||
# ./services/caddy.nix
|
# ./services/caddy.nix
|
||||||
# ./services/cf-dyndns.nix
|
|
||||||
# ./services/cloudflared.nix
|
|
||||||
./services/dashboard.nix
|
./services/dashboard.nix
|
||||||
./services/deemix.nix
|
./services/deemix.nix
|
||||||
./services/factorio.nix
|
./services/factorio.nix
|
||||||
|
@ -48,10 +46,8 @@
|
||||||
# ./services/step-ca.nix
|
# ./services/step-ca.nix
|
||||||
./services/syncthing.nix
|
./services/syncthing.nix
|
||||||
./services/tailscale.nix
|
./services/tailscale.nix
|
||||||
# ./services/tubearchivist.nix
|
|
||||||
./services/vaultwarden.nix
|
./services/vaultwarden.nix
|
||||||
./services/vikunja.nix
|
./services/vikunja.nix
|
||||||
# ./services/ytdl.nix
|
|
||||||
./services/zfs.nix
|
./services/zfs.nix
|
||||||
|
|
||||||
# Load Agenix
|
# Load Agenix
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
{config, ...}: {
|
{config, ...}: {
|
||||||
virtualisation.oci-containers.containers = let
|
virtualisation.oci-containers.containers = let
|
||||||
authentikVersion = "2022.11";
|
authentikVersion = "2022.12";
|
||||||
in {
|
in {
|
||||||
authentik-db = {
|
authentik-db = {
|
||||||
image = "postgres:12-alpine";
|
image = "postgres:12-alpine";
|
||||||
|
|
|
@ -1,10 +0,0 @@
|
||||||
{
|
|
||||||
services.cloudflare-dyndns = {
|
|
||||||
enable = false;
|
|
||||||
domains = ["wg.thehedgehog.me" "wg.pyrox.dev"];
|
|
||||||
ipv4 = true;
|
|
||||||
ipv6 = false;
|
|
||||||
proxied = false;
|
|
||||||
apiTokenFile = "/run/agenix/cf-dyndns-token";
|
|
||||||
};
|
|
||||||
}
|
|
|
@ -1,28 +0,0 @@
|
||||||
{
|
|
||||||
pkgs,
|
|
||||||
config,
|
|
||||||
...
|
|
||||||
}: {
|
|
||||||
users.users.cloudflared = {
|
|
||||||
group = "cloudflared";
|
|
||||||
isSystemUser = true;
|
|
||||||
};
|
|
||||||
users.groups.cloudflared = {};
|
|
||||||
|
|
||||||
systemd.services.cloudflared = {
|
|
||||||
wantedBy = ["multi-user.target"];
|
|
||||||
after = ["network.target"];
|
|
||||||
serviceConfig = {
|
|
||||||
Description = "Cloudflared Tunnel Service";
|
|
||||||
ExecStart = "${pkgs.cloudflared}/bin/cloudflared tunnel --no-autoupdate run --cred-file /run/agenix/cloudflared-creds";
|
|
||||||
Restart = "on-failure";
|
|
||||||
RestartSec = "5s";
|
|
||||||
User = "cloudflared";
|
|
||||||
Group = "cloudflared";
|
|
||||||
Type = "notify";
|
|
||||||
TimeoutStartSec = 0;
|
|
||||||
ReadWriteDirectories = "/run/agenix";
|
|
||||||
EnvironmentFile = "/run/agenix/cloudflared-vars";
|
|
||||||
};
|
|
||||||
};
|
|
||||||
}
|
|
|
@ -1,42 +0,0 @@
|
||||||
{
|
|
||||||
virtualisation.oci-containers.containers = {
|
|
||||||
tubearchivist-server = {
|
|
||||||
image = "bbilly1/tubearchivist:latest";
|
|
||||||
ports = ["6912:8000"];
|
|
||||||
extraOptions = ["--network=archivist"];
|
|
||||||
volumes = [
|
|
||||||
"/var/lib/archivist/media:/youtube"
|
|
||||||
"/var/lib/archivist/cache:/cache"
|
|
||||||
];
|
|
||||||
environment = {
|
|
||||||
ES_URL = "http://tubearchivist-elastic:9200";
|
|
||||||
REDIS_HOST = "tubearchivist-redis";
|
|
||||||
TA_HOST = "tube.pyrox.dev";
|
|
||||||
TA_USERNAME = "thehedgeh0g";
|
|
||||||
TA_PASSWORD = "insecurepassw0rd";
|
|
||||||
ELASTIC_PASSWORD = "tub3arch1vist";
|
|
||||||
TZ = "America/New_York";
|
|
||||||
};
|
|
||||||
dependsOn = ["tubearchivist-elastic" "tubearchivist-redis"];
|
|
||||||
};
|
|
||||||
tubearchivist-redis = {
|
|
||||||
image = "redislabs/rejson:latest";
|
|
||||||
dependsOn = ["tubearchivist-elastic"];
|
|
||||||
volumes = ["/var/lib/archivist/redis-data:/data"];
|
|
||||||
extraOptions = ["--network=archivist"];
|
|
||||||
};
|
|
||||||
tubearchivist-elastic = {
|
|
||||||
image = "bbilly1/tubearchivist-es:latest";
|
|
||||||
extraOptions = ["--network=archivist"];
|
|
||||||
environment = {
|
|
||||||
"xpack.security.enabled" = "true";
|
|
||||||
ELASTIC_PASSWORD = "tub3arch1vist";
|
|
||||||
"discovery.type" = "single-node";
|
|
||||||
ES_JAVA_OPTS = "-Xms512m -Xmx512m";
|
|
||||||
};
|
|
||||||
volumes = [
|
|
||||||
"/var/lib/archivist/es-data:/usr/share/elasticsearch/data"
|
|
||||||
];
|
|
||||||
};
|
|
||||||
};
|
|
||||||
}
|
|
|
@ -1,11 +0,0 @@
|
||||||
{
|
|
||||||
virtualisation.oci-containers.containers.ytdl = {
|
|
||||||
image = "alexta69/metube";
|
|
||||||
ports = ["6906:8081"];
|
|
||||||
volumes = ["/var/lib/music:/downloads"];
|
|
||||||
environment = {
|
|
||||||
UID = "996";
|
|
||||||
GID = "996";
|
|
||||||
};
|
|
||||||
};
|
|
||||||
}
|
|
Loading…
Reference in a new issue