removed home.ingolf-wagner.de

2021-03-29 21:18:08 +02:00 · 2021-03-29 21:18:08 +02:00 · 11aa803200
commit 11aa803200
parent df61e3166e
1 changed files with 38 additions and 38 deletions
--- a/configs/sputnik/nginx.nix
+++ b/configs/sputnik/nginx.nix
@ -285,44 +285,44 @@ in {
      };
-      "home.ingolf-wagner.de" = {
+      #"home.ingolf-wagner.de" = {
-        listen = [
+      #  listen = [
-          {
+      #    {
-            addr = "0.0.0.0";
+      #      addr = "0.0.0.0";
-            port = 4443;
+      #      port = 4443;
-            ssl = true;
+      #      ssl = true;
-          }
+      #    }
-          {
+      #    {
-            addr = "0.0.0.0";
+      #      addr = "0.0.0.0";
-            port = 80;
+      #      port = 80;
-            ssl = false;
+      #      ssl = false;
-          }
+      #    }
-        ];
+      #  ];
-        extraConfig = ''
+      #  extraConfig = ''
-          proxy_buffering off;
+      #    proxy_buffering off;
-          # client certificate
+      #    # client certificate
-          ssl_client_certificate ${<secrets/client-cert/ca.crt>};
+      #    ssl_client_certificate ${<secrets/client-cert/ca.crt>};
-          # make verification optional, so we can display a 403 message to those
+      #    # make verification optional, so we can display a 403 message to those
-          # who fail authentication
+      #    # who fail authentication
-          ssl_verify_client optional;
+      #    ssl_verify_client optional;
-        '';
+      #  '';
-        forceSSL = true;
+      #  forceSSL = true;
-        enableACME = true;
+      #  enableACME = true;
-        locations."/" = {
+      #  locations."/" = {
-          proxyPass = "http://pepe.private:8123";
+      #    proxyPass = "http://pepe.private:8123";
-          proxyWebsockets = true;
+      #    proxyWebsockets = true;
-          extraConfig = ''
+      #    extraConfig = ''
-            # if the client-side certificate failed to authenticate, show a 403
+      #      # if the client-side certificate failed to authenticate, show a 403
-            # message to the client
+      #      # message to the client
-            if ($ssl_client_verify != SUCCESS) {
+      #      if ($ssl_client_verify != SUCCESS) {
-              return 403;
+      #        return 403;
-            }
+      #      }
-            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+      #      proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-            proxy_set_header Upgrade $http_upgrade;
+      #      proxy_set_header Upgrade $http_upgrade;
-            proxy_set_header Connection $connection_upgrade;
+      #      proxy_set_header Connection $connection_upgrade;
-          '';
+      #    '';
-        };
+      #  };
-      };
+      #};
    };