diff options
| author | sefidel <contact@sefidel.net> | 2024-03-23 15:30:18 +0900 |
|---|---|---|
| committer | sefidel <contact@sefidel.net> | 2024-04-06 15:48:19 +0900 |
| commit | 0986130e61996c1e4d04819344b5e5761a94f38b (patch) | |
| tree | 833225cd292ced27be564f844c4590f585405ed9 /modules/services | |
| parent | d04501efa2c17aecc89599b9a921d680adbf4d87 (diff) | |
| download | infra-0986130e61996c1e4d04819344b5e5761a94f38b.tar.gz infra-0986130e61996c1e4d04819344b5e5761a94f38b.zip | |
feat(modules/matrix-homeserver): allow admin endpoints on tailscale ip
Diffstat (limited to 'modules/services')
| -rw-r--r-- | modules/services/matrix-homeserver.nix | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/modules/services/matrix-homeserver.nix b/modules/services/matrix-homeserver.nix index a29ecc6..56e9adf 100644 --- a/modules/services/matrix-homeserver.nix +++ b/modules/services/matrix-homeserver.nix @@ -151,6 +151,15 @@ in ''; locations."~* ^(\\/_matrix|\\/_synapse\\/client)".proxyPass = "http://[::1]:${toString httpPort}"; + locations."/_synapse/admin" = { + # TODO: set up proper tailscale auth + extraConfig = '' + allow 100.64.0.0/10; + deny all; + ''; + + proxyPass = "http://[::1]:${toString httpPort}"; + }; }; services.nginx.virtualHosts.${cfg.domain} = |