felschr/nixos-config
1
1
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

feat(website): proxy WKD to ProtonMail

Browse source
This commit is contained in:
Felix Schröter 2023-06-14 01:16:45 +02:00
parent 2077f87f54
commit 8e1499e211
Signed by: felschr
GPG key ID: 671E39E6744C807D
2 changed files with 34 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
home-server.nix
View file

@ -22,6 +22,7 @@ in with builtins; {
./services/jellyfin.nix ./services/jellyfin.nix
./services/etebase.nix ./services/etebase.nix
./services/website.nix ./services/website.nix
./services/wkd.nix
./services/home-assistant ./services/home-assistant
./services/matrix ./services/matrix
./services/watchtower.nix ./services/watchtower.nix
@ -77,6 +78,7 @@ in with builtins; {
passwordFile = config.age.secrets.cloudflare.path; passwordFile = config.age.secrets.cloudflare.path;
domains = [ domains = [
"felschr.com" "felschr.com"
"openpgpkey.felschr.com"
"home.felschr.com" "home.felschr.com"
"esphome.felschr.com" "esphome.felschr.com"
"matrix.felschr.com" "matrix.felschr.com"

32
services/wkd.nix Normal file
View file

@ -0,0 +1,32 @@
{ config, pkgs, ... }:
{
# Direct mode
services.nginx.virtualHosts."felschr.com" = {
enableACME = true;
forceSSL = true;
locations."/.well-known/openpgpkey/" = {
recommendedProxySettings = false;
proxyPass = "https://openpgpkey.protonmail.ch";
extraConfig = ''
add_header 'Access-Control-Allow-Origin' '*' always;
proxy_set_header Host $proxy_host;
rewrite /.well-known/openpgpkey/(.*) /.well-known/openpgpkey/$host/$1 break;
'';
};
};
# Advanced mode
services.nginx.virtualHosts."openpgpkey.felschr.com" = {
enableACME = true;
forceSSL = true;
locations."/.well-known/openpgpkey/felschr.com/" = {
recommendedProxySettings = false;
proxyPass = "https://openpgpkey.protonmail.ch";
extraConfig = ''
add_header 'Access-Control-Allow-Origin' '*' always;
proxy_set_header Host $proxy_host;
'';
};
};
}