caddy: Only install tailscale plugin when tailscale hosts exist

2026-01-21 14:01:34 +01:00 · 2025-11-03 23:35:10 +01:00 · 2025-11-03 23:35:10 +01:00 · d3dbe02b01
commit d3dbe02b01
parent 145e76cec7
1 changed files with 12 additions and 10 deletions
--- a/modules/system/services/caddy.nix
+++ b/modules/system/services/caddy.nix
@ -70,10 +70,6 @@ in
        services.caddy = {
          enable = true;
          package = pkgs.caddy.withPlugins {
            plugins = [ "github.com/tailscale/caddy-tailscale@v0.0.0-20250508175905-642f61fea3cc" ];
            hash = "sha256-bw2ZH+XTQlyYw5LgkVr+oEeL8Nf4j/KO2XQIUrsVpiU=";
          };
          enableReload = false;
          globalConfig = ''
            admin off
@ -97,12 +93,18 @@ in
          restartUnits = [ "caddy.service" ];
        };
-        services.caddy.globalConfig = ''
+        services.caddy = {
-          tailscale {
+          package = pkgs.caddy.withPlugins {
-            auth_key {file.${config.sops.secrets."tailscale/service-auth-key".path}}
+            plugins = [ "github.com/tailscale/caddy-tailscale@v0.0.0-20250508175905-642f61fea3cc" ];
-            ephemeral true
+            hash = "sha256-bw2ZH+XTQlyYw5LgkVr+oEeL8Nf4j/KO2XQIUrsVpiU=";
-          }
+          };
-        '';
+          globalConfig = ''
            tailscale {
              auth_key {file.${config.sops.secrets."tailscale/service-auth-key".path}}
              ephemeral true
            }
          '';
        };
      })
    ]
  );