From 6a93cb9705b58dfb0d1b569b1756f86868ad44fa Mon Sep 17 00:00:00 2001 From: Tyler Mayoff Date: Mon, 1 Dec 2025 22:22:12 -0500 Subject: [PATCH 1/2] updated hosts --- .../flake/machines/saffron/configuration.nix | 80 ++++++++++++++++++- 1 file changed, 79 insertions(+), 1 deletion(-) diff --git a/dot_config/flake/machines/saffron/configuration.nix b/dot_config/flake/machines/saffron/configuration.nix index df6038d..6232a9e 100644 --- a/dot_config/flake/machines/saffron/configuration.nix +++ b/dot_config/flake/machines/saffron/configuration.nix @@ -31,7 +31,7 @@ }; networking.hostName = "saffron"; # Define your hostname. - networking.firewall.allowedTCPPorts = [ 443 ]; + networking.firewall.allowedTCPPorts = [443 80]; # Caddy reverse proxy with DNS challenge services.caddy = { @@ -49,6 +49,84 @@ reverse_proxy serenity.pizzly-bortle.ts.net:5600 ''; }; + virtualHosts."search.mayoff.ca" = { + extraConfig = '' + tls { + dns cloudflare {env.CLOUDFLARE_API_TOKEN} + } + reverse_proxy serenity.pizzly-bortle.ts.net:6000 + ''; + }; + virtualHosts."monitor.mayoff.ca" = { + extraConfig = '' + tls { + dns cloudflare {env.CLOUDFLARE_API_TOKEN} + } + reverse_proxy serenity.pizzly-bortle.ts.net:8090 + ''; + }; + virtualHosts."gitforge.mayoff.ca" = { + extraConfig = '' + tls { + dns cloudflare {env.CLOUDFLARE_API_TOKEN} + } + reverse_proxy serenity.pizzly-bortle.ts.net:3000 + ''; + }; + virtualHosts."immich.mayoff.ca" = { + extraConfig = '' + tls { + dns cloudflare {env.CLOUDFLARE_API_TOKEN} + } + reverse_proxy serenity.pizzly-bortle.ts.net:2283 + ''; + }; + virtualHosts."nextcloud.mayoff.ca" = { + extraConfig = '' + tls { + dns cloudflare {env.CLOUDFLARE_API_TOKEN} + } + reverse_proxy serenity.pizzly-bortle.ts.net:8100 + ''; + }; + # virtualHosts."documentserver.mayoff.ca" = { + # extraConfig = '' + # tls { + # dns cloudflare {env.CLOUDFLARE_API_TOKEN} + # } + # reverse_proxy serenity.pizzly-bortle.ts.net:8101 + # ''; + # }; + virtualHosts."chat.mayoff.ca" = { + extraConfig = '' + tls { + dns cloudflare {env.CLOUDFLARE_API_TOKEN} + } + reverse_proxy serenity.pizzly-bortle.ts.net:8009 + ''; + }; + virtualHosts."media.mayoff.ca" = { + extraConfig = '' + tls { + dns cloudflare {env.CLOUDFLARE_API_TOKEN} + } + reverse_proxy serenity.pizzly-bortle.ts.net:8096 + ''; + }; + virtualHosts."homeassistant.mayoff.ca" = { + extraConfig = '' + tls { + dns cloudflare {env.CLOUDFLARE_API_TOKEN} + } + reverse_proxy homeassistant.pizzly-bortle.ts.net:8123 { + header_up Host {upstream_hostport} + header_up X-Real-IP {remote_host} + header_up X-Forwarded-For {remote_host} + header_up X-Forwarded-Proto {scheme} + header_up X-Forwarded-Host {host} + } + ''; + }; }; # Set your time zone. From 055136d7f1811cb2482d0baeeb7cdf1aff74f692 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 2 Dec 2025 03:24:47 +0000 Subject: [PATCH 2/2] chore(deps): update actions/checkout action to v6 --- .forgejo/workflows/main.yml | 2 +- .forgejo/workflows/renovate.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.forgejo/workflows/main.yml b/.forgejo/workflows/main.yml index 1ab5969..3dcfe63 100644 --- a/.forgejo/workflows/main.yml +++ b/.forgejo/workflows/main.yml @@ -23,7 +23,7 @@ jobs: runs-on: kaylee continue-on-error: false steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 - name: Install Nix uses: https://github.com/DeterminateSystems/nix-installer-action@main diff --git a/.forgejo/workflows/renovate.yml b/.forgejo/workflows/renovate.yml index 53023bc..c98ec65 100644 --- a/.forgejo/workflows/renovate.yml +++ b/.forgejo/workflows/renovate.yml @@ -15,7 +15,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: Install Nix uses: https://github.com/DeterminateSystems/nix-installer-action@main