SebastianStork/nixos-config
1
0
Fork 0
mirror of https://github.com/SebastianStork/nixos-config.git synced 2026-01-21 15:11:34 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Add uniqueness check for ports

Browse source 
Credit to https://lorenzbischof.ch/posts/detect-port-conflicts-in-nixos-services/
This commit is contained in:
SebastianStork 2025-06-14 01:13:37 +02:00
parent a4c3e2a829
commit 232c9aa946
21 changed files with 110 additions and 12 deletions
Download patch file Download diff file Expand all files Collapse all files

14
modules/system/services/caddy.nix
View file

@ -27,6 +27,11 @@ let
reverse_proxy localhost:${toString port}
'';
};
ports = [
80
443
];
in
{
options.custom.services.caddy.virtualHosts = lib.mkOption {
@ -57,6 +62,9 @@ in
config = lib.mkIf (virtualHosts != { }) (
lib.mkMerge [
{
meta.ports.list = lib.mkIf nonTailscaleHostsExist ports;
networking.firewall.allowedTCPPorts = lib.mkIf nonTailscaleHostsExist ports;
services.caddy = {
enable = true;
enableReload = false;
@ -66,11 +74,6 @@ in
_: value: lib.nameValuePair value.domain (mkVirtualHostConfig value.domain value.port)
);
};
networking.firewall.allowedTCPPorts = lib.mkIf nonTailscaleHostsExist [
80
443
];
}
(lib.mkIf tailscaleHostsExist {
@ -78,7 +81,6 @@ in
services.caddy = {
package = caddyWithTailscale;
enableReload = false;
globalConfig = ''
admin off