Draft of nix files for a reverse proxy and of deployment scripts. Not tested, not functional.

2026-04-29 20:15:30 +02:00
parent 10399460f4
commit c1864fdb9c
6 changed files with 251 additions and 26 deletions
@@ -0,0 +1,32 @@
+{ config, pkgs, lib, ... }:
+
+{
+  imports = [
+    # Module pour les conteneurs LXC
+    (builtins.callPackage ../../../modules/machine-types/lxc.nix {})
+    # Module pour le reverse proxy
+    (builtins.callPackage ../../../modules/services/reverse-proxy/default.nix {})
+  ];
+
+  # Configuration réseau (IPv4 + IPv6)
+  networking.hostName = "rp01";
+  networking.interfaces.eth0.ipv4.addresses = [
+    { address = "192.168.1.100"; prefixLength = 24; }
+  ];
+  # networking.interfaces.eth0.ipv6.addresses = [
+  #   { address = "2001:db8::1"; prefixLength = 64; }
+  # ];
+
+  # Liste des services à exposer via le reverse proxy
+  services.reverse-proxy.publicServices = [
+    { host = "gitea"; internalHost = "gitea01"; port = 3000; }
+    { host = "vaultwarden"; internalHost = "vault01"; port = 80; }
+    # Ajoutez ici d'autres services (ex: dns01, etc.)
+  ];
+
+  # Configuration spécifique à Caddy (optionnelle)
+  services.caddy = {
+    # Vous pouvez surcharger des paramètres ici si besoin
+    email = "xavier@lagraula.fr";  # Email pour Let's Encrypt
+  };
+}