diff options
| author | Christian Krinitsin <code@krinitsin.xyz> | 2025-04-02 09:01:14 +0200 |
|---|---|---|
| committer | Christian Krinitsin <code@krinitsin.xyz> | 2025-04-02 09:01:14 +0200 |
| commit | 3794179508d9ee5d5535d3d62bc94c6416988988 (patch) | |
| tree | b4b6658b5bc932286c78079c62aae2b1cc2815cf | |
| parent | eb3f95f3d5d7cd7d2f6e378c408c0ca17f2272b3 (diff) | |
| download | nosix-3794179508d9ee5d5535d3d62bc94c6416988988.tar.gz nosix-3794179508d9ee5d5535d3d62bc94c6416988988.zip | |
add vaultwarden email and add 'login with device'
| -rw-r--r-- | modules/mailserver.nix | 4 | ||||
| -rw-r--r-- | modules/vaultwarden.nix | 15 |
2 files changed, 18 insertions, 1 deletions
diff --git a/modules/mailserver.nix b/modules/mailserver.nix index 3329d43..71ca506 100644 --- a/modules/mailserver.nix +++ b/modules/mailserver.nix @@ -21,6 +21,10 @@ "wladislaw@krinitsin.com" = { hashedPasswordFile = "/secret/wladislaw@krinitsin.com"; }; + "vaultwarden@krinitsin.com" = { + hashedPasswordFile = "/secret/vaultwarden@krinitsin.com"; + sendOnly = true; + }; }; }; diff --git a/modules/vaultwarden.nix b/modules/vaultwarden.nix index 4f5aa95..7511296 100644 --- a/modules/vaultwarden.nix +++ b/modules/vaultwarden.nix @@ -15,7 +15,20 @@ services.nginx.virtualHosts."vault.krinitsin.com" = { forceSSL = true; useACMEHost = "krinitsin.com"; - locations."/".proxyPass = "http://localhost:8222"; + locations."/" = { + extraConfig = '' + proxy_http_version 1.1; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header Connection $http_connection; + + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + ''; + + proxyPass = "http://localhost:8222"; + }; }; security.acme.certs."krinitsin.com".extraDomainNames = [ "vault.krinitsin.com" ]; |