about summary refs log tree commit diff
path: root/modules
diff options
context:
space:
mode:
authorsefidel <contact@sefidel.net>2024-03-23 15:30:18 +0900
committersefidel <contact@sefidel.net>2024-04-06 15:48:19 +0900
commit0986130e61996c1e4d04819344b5e5761a94f38b (patch)
tree833225cd292ced27be564f844c4590f585405ed9 /modules
parentd04501efa2c17aecc89599b9a921d680adbf4d87 (diff)
downloadinfra-0986130e61996c1e4d04819344b5e5761a94f38b.tar.gz
infra-0986130e61996c1e4d04819344b5e5761a94f38b.zip
feat(modules/matrix-homeserver): allow admin endpoints on tailscale ip
Diffstat (limited to 'modules')
-rw-r--r--modules/services/matrix-homeserver.nix9
1 files changed, 9 insertions, 0 deletions
diff --git a/modules/services/matrix-homeserver.nix b/modules/services/matrix-homeserver.nix
index a29ecc6..56e9adf 100644
--- a/modules/services/matrix-homeserver.nix
+++ b/modules/services/matrix-homeserver.nix
@@ -151,6 +151,15 @@ in
       '';
 
       locations."~* ^(\\/_matrix|\\/_synapse\\/client)".proxyPass = "http://[::1]:${toString httpPort}";
+      locations."/_synapse/admin" = {
+        # TODO: set up proper tailscale auth
+        extraConfig = ''
+          allow 100.64.0.0/10;
+          deny all;
+        '';
+
+        proxyPass = "http://[::1]:${toString httpPort}";
+      };
     };
 
     services.nginx.virtualHosts.${cfg.domain} =