added caddy for paperless

2025-05-27 00:51:36 -05:00
parent 7bf0271b45
commit 373fc522e3
4 changed files with 31 additions and 3 deletions
--- a/nixosModules/caddy.nix
+++ b/nixosModules/caddy.nix
@@ -0,0 +1,22 @@
+{ config, pkgs, ... }:
+{
+  sops.secrets.cloudflare-api-key = {};
+
+  # https://nixos.wiki/wiki/Caddy
+  services.caddy = {
+    enable = true;
+    environmentFile = config.sops.secrets.cloudflare-api-key.path;
+    virtualHosts."paperless.john-stream.com".extraConfig = ''
+      reverse_proxy 192.168.1.110:8000
+      tls {
+        dns cloudflare {env.CF_API_TOKEN}
+      }
+    '';
+    package = pkgs.caddy.withPlugins {
+      plugins = [ "github.com/caddy-dns/cloudflare@v0.2.1" ];
+      hash = "sha256-Gsuo+ripJSgKSYOM9/yl6Kt/6BFCA6BuTDvPdteinAI=";
+    };
+  };
+
+  networking.firewall.allowedTCPPorts = [ 80 443 ];
+}