mediaserver: add nginx

2023-04-14 16:21:39 +02:00 · 2023-04-14 16:21:39 +02:00 · 4841a89c3d
commit 4841a89c3d
parent c516c9c3c9
1 changed files with 15 additions and 14 deletions
--- a/system/nixos/nginx.nix
+++ b/system/nixos/nginx.nix
@ -1,8 +1,5 @@
 { pkgs, lib, config, ... }:
 let
  interfaces = lib.mapAttrsToList (name: value: value.matchConfig.Name) config.systemd.network.networks ++ [ "tailscale0" ];
 in
 {
  services.nginx = {
    enable = true;
@ -29,15 +26,19 @@ in
    '';
  };
-  networking.firewall.interfaces = builtins.listToAttrs
+  networking.firewall.interfaces =
-    (builtins.map
+    let
-      (iface:
+      interfaces = lib.mapAttrsToList (_: value: value.matchConfig.Name ? null) config.systemd.network.networks ++ [ "tailscale0" ];
-        {
+    in
-          name = iface;
+    builtins.listToAttrs
-          value = {
+      (builtins.map
-            allowedTCPPorts = [ 80 443 ];
+        (iface:
-            allowedUDPPorts = [ 443 ];
+          {
-          };
+            name = iface;
-        })
+            value = {
-      (builtins.filter builtins.isString interfaces));
+              allowedTCPPorts = [ 80 443 ];
              allowedUDPPorts = [ 443 ];
            };
          })
        (builtins.filter builtins.isString interfaces));
 }