diff --git a/nixos/hosts/toscano/configuration.nix b/nixos/hosts/toscano/configuration.nix index 467beae..02417ce 100644 --- a/nixos/hosts/toscano/configuration.nix +++ b/nixos/hosts/toscano/configuration.nix @@ -1,4 +1,4 @@ -# NixOS configuration for toscano +# Nix configuration for toscano # # https://en.wikipedia.org/wiki/Joseph_Toscano { @@ -9,9 +9,9 @@ }: { imports = [ ../../../networks/linode.nix - ../../../profiles/forgejo.nix ../../../profiles/hakyll-skeleton.nix ../../../profiles/jfdic-web.nix + ../../../profiles/reciproka-forgejo.nix ../../../profiles/resrok-web.nix ../../../profiles/tmateServer.nix ../../../profiles/voc-web.nix diff --git a/profiles/forgejo.nix b/profiles/reciproka-forgejo.nix similarity index 82% rename from profiles/forgejo.nix rename to profiles/reciproka-forgejo.nix index a5c2329..cc99b37 100644 --- a/profiles/forgejo.nix +++ b/profiles/reciproka-forgejo.nix @@ -1,4 +1,4 @@ -# NixOps configuration for the hosts running Forgejo +# Nix configuration for the Reciproka Forgejo service { config, pkgs, @@ -11,13 +11,13 @@ in { services.gitea = { enable = true; # Enable Forgejo - appName = "JFDI Collective: Forgejo Service"; # Give the site a name + appName = "Reciproka Kolectiva: Forgejo Service"; # Give the site a name database = { type = "postgres"; # Database type passwordFile = config.age.secrets.forgejo.path; }; - domain = "source.jfdic.org"; # Domain name - rootUrl = "https://source.jfdic.org/"; # Root web URL + domain = "reciproka.dev"; # Domain name + rootUrl = "https://reciproka.dev/"; # Root web URL httpPort = 3002; # Provided unique port package = forgejo; # a soft fork of gitea settings = let @@ -30,7 +30,7 @@ in { in { mailer = { ENABLED = true; - FROM = "source@jfdic.org"; + FROM = "fonto@reciproka.dev"; }; repository = { DEFAULT_BRANCH = "consensus"; @@ -91,6 +91,13 @@ in { recommendedProxySettings = true; recommendedTlsSettings = true; virtualHosts."source.jfdic.org" = { + enableACME = true; # Use ACME certs + forceSSL = true; # Force SSL + locations."/" = { + return = "301 https://reciproka.dev$request_uri"; + }; + }; + virtualHosts."reciproka.dev" = { # Forgejo hostname enableACME = true; # Use ACME certs forceSSL = true; # Force SSL @@ -101,7 +108,8 @@ in { security.acme = { acceptTerms = true; certs = { - "source.jfdic.org".email = "source@jfdic.org"; + "reciproka.dev".email = "admin@reciproka.co"; + "source.jfdic.org".email = "admin@reciproka.co"; }; };