wip: try to use infra-modules infra-modules

author: sefidel <contact@sefidel.net> 2024-01-24 19:18:11 +0900
committer: sefidel <contact@sefidel.net> 2024-01-24 19:18:11 +0900
commit: 497c3cd7864fdbcc546408d6d86ebfad37aa9b78 (patch)
tree: 6cd5bf30b9953156d71192fa96e34a863dda5926 /modules/services/nginx.nix
parent: a1dc1ff8c07155f697a30145168820612b28b6cd (diff)
download: infra-497c3cd7864fdbcc546408d6d86ebfad37aa9b78.tar.gz
infra-497c3cd7864fdbcc546408d6d86ebfad37aa9b78.zip
1 files changed, 0 insertions, 37 deletions
diff --git a/modules/services/nginx.nix b/modules/services/nginx.nix
deleted file mode 100644
index f9a5a31..0000000
--- a/modules/services/nginx.nix
+++ /dev/null
@@ -1,37 +0,0 @@
-{ config, lib, ... }:
-
-with lib;
-let
-  cfg = config.modules.services.nginx;
-in
-{
-  options.modules.services.nginx = {
-    enable = mkEnableOption "nginx proxy";
-  };
-  config = mkIf cfg.enable {
-    modules.services.acme.enable = true;
-
-    services.nginx = {
-      enable = true;
-      # prevent 3~5s downtime on update
-      enableReload = true;
-
-      recommendedGzipSettings = true;
-      recommendedOptimisation = true;
-      recommendedProxySettings = true;
-      recommendedTlsSettings = true;
-
-      # catch-all for unknown hosts.
-      virtualHosts."_" = {
-        default = true;
-        rejectSSL = true;
-
-        extraConfig = ''
-          return 444;
-        '';
-      };
-    };
-
-    users.extraUsers.nginx.extraGroups = [ "acme" ];
-  };
-}
author	sefidel <contact@sefidel.net>	2024-01-24 19:18:11 +0900
committer	sefidel <contact@sefidel.net>	2024-01-24 19:18:11 +0900
commit	497c3cd7864fdbcc546408d6d86ebfad37aa9b78 (patch)
tree	6cd5bf30b9953156d71192fa96e34a863dda5926 /modules/services/nginx.nix
parent	a1dc1ff8c07155f697a30145168820612b28b6cd (diff)
download	infra-497c3cd7864fdbcc546408d6d86ebfad37aa9b78.tar.gz infra-497c3cd7864fdbcc546408d6d86ebfad37aa9b78.zip