feat(website): proxy WKD to ProtonMail

2023-06-14 01:16:45 +02:00 · 2023-06-14 01:16:45 +02:00 · 8e1499e211
commit 8e1499e211
parent 2077f87f54
2 changed files with 34 additions and 0 deletions
--- a/services/wkd.nix
+++ b/services/wkd.nix
@ -0,0 +1,32 @@
+{ config, pkgs, ... }:
+
+{
+  # Direct mode
+  services.nginx.virtualHosts."felschr.com" = {
+    enableACME = true;
+    forceSSL = true;
+    locations."/.well-known/openpgpkey/" = {
+      recommendedProxySettings = false;
+      proxyPass = "https://openpgpkey.protonmail.ch";
+      extraConfig = ''
+        add_header 'Access-Control-Allow-Origin' '*' always;
+        proxy_set_header Host $proxy_host;
+        rewrite /.well-known/openpgpkey/(.*) /.well-known/openpgpkey/$host/$1 break;
+      '';
+    };
+  };
+
+  # Advanced mode
+  services.nginx.virtualHosts."openpgpkey.felschr.com" = {
+    enableACME = true;
+    forceSSL = true;
+    locations."/.well-known/openpgpkey/felschr.com/" = {
+      recommendedProxySettings = false;
+      proxyPass = "https://openpgpkey.protonmail.ch";
+      extraConfig = ''
+        add_header 'Access-Control-Allow-Origin' '*' always;
+        proxy_set_header Host $proxy_host;
+      '';
+    };
+  };
+}