sokai/mynixos-config
1
1
Fork 0
forked from mirrors_public/oddlama_nix-config
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

chore: rework home assistant config

Browse source
This commit is contained in:
oddlama 2024-05-22 02:04:43 +02:00
parent 4e46105e5e
commit 6c731eede4
No known key found for this signature in database
GPG key ID: 14EFE510775FE39A
12 changed files with 73 additions and 81 deletions
Download patch file Download diff file Expand all files Collapse all files

2
hosts/sire/guests/grafana.nix
View file

@ -100,8 +100,10 @@ in {
proxyPass = "http://grafana";
proxyWebsockets = true;
};
# FIXME: refer to lan 192.168... and fd10:: via globals
extraConfig = ''
allow 192.168.1.0/24;
allow fd10::/64;
deny all;
'';
};

2
hosts/sire/guests/immich.nix
View file

@ -224,9 +224,11 @@ in {
proxyPass = "http://immich";
proxyWebsockets = true;
};
# FIXME: refer to lan 192.168... and fd10:: via globals
extraConfig = ''
client_max_body_size 10G;
allow 192.168.1.0/24;
allow fd10::/64;
deny all;
'';
};

2
hosts/sire/guests/paperless.nix
View file

@ -61,9 +61,11 @@ in {
virtualHosts.${paperlessDomain} = {
forceSSL = true;
useACMEWildcardHost = true;
# FIXME: refer to lan 192.168... and fd10:: via globals
extraConfig = ''
client_max_body_size 512M;
allow 192.168.1.0/24;
allow fd10::/64;
deny all;
'';
locations."/" = {

2
hosts/sire/guests/samba.nix
View file

@ -155,7 +155,7 @@ in {
# Deny access to all hosts by default.
"hosts deny = 0.0.0.0/0"
# Allow access to local network and TODO: wireguard
"hosts allow = 192.168.1.0/24"
"hosts allow = 192.168.1.0/24 fd10::/64"
# Don't advertise inaccessible shares to users
"access based share enum = yes"