wip: Add host deertopia

2025-01-18 14:33:34 -07:00
parent 34adb5c26e
commit 46d6c129c1
74 changed files with 250 additions and 26 deletions
--- a/hosts/deertopia/services/git-annex.nix
+++ b/hosts/deertopia/services/git-annex.nix
@@ -0,0 +1,36 @@
+{ config, lib, pkgs, ... }:
+
+{
+  environment.systemPackages = with pkgs; [
+    git-annex
+    git
+    rsync
+  ];
+
+  # Our files managed by git-annex actually live on a WebDAV server that is
+  # declared by the following section.
+  services.nginx = {
+    # Nginx's WebDAV support is in a separate module we must import.
+    additionalModules = [ pkgs.nginxModules.dav ];
+
+    virtualHosts."dav.deertopia.net" = {
+      addSSL = true;
+      enableACME = true;
+      locations."/".extraConfig = ''
+        alias /persist/web/webdav;
+        client_body_temp_path /tmp/nginx/webdav;
+        dav_methods PUT DELETE MKCOL COPY MOVE;
+        dav_ext_methods PROPFIND OPTIONS;
+        create_full_put_path on
+
+        auth_basic "Restricted Access";
+        auth_basic_user_file /etc/nginx/webdav.passwd;
+
+        # Deny all access unless authenticated
+        satisfy all;
+        allow all;  # This allows all authenticated users
+        deny all;   # This denies all other users
+      '';
+    };
+  };
+}