snowflake/hosts/yuki/services/traefik.nix

62 lines
1.7 KiB
Nix

_: {
networking.firewall.allowedTCPPorts = [80 443];
services.traefik = {
enable = true;
dynamicConfigOptions = {
http = {
routers = {
api = {
rule = "PathPrefix(`/api/`)";
entryPoints = ["websecure"];
service = "api@internal";
};
homarr = {
rule = "Host(`dashboard.home.arpa`)";
entrypoints = ["web"];
service = "homarr";
};
searxng = {
rule = "Host(`searxng.home.arpa`)";
entryPoints = ["web"];
service = "searxng";
};
stash = {
rule = "Host(`stash.home.arpa`)";
entrypoints = ["web"];
service = "stash";
};
dashdot = {
rule = "Host(`dashdot.yuki.home.arpa`)";
entrypoints = ["web"];
service = "dashdot";
};
};
services = {
stash.loadBalancer.servers = [{url = "http://localhost:9999";}];
homarr.loadBalancer.servers = [{url = "http://localhost:7575";}];
dashdot.loadBalancer.servers = [{url = "http://localhost:4000";}];
searxng.loadBalancer.servers = [{url = "http://localhost:8100";}];
};
};
};
staticConfigOptions = {
log.level = "DEBUG";
api.dashboard = false;
api.insecure = false;
global = {
checkNewVersion = false;
sendAnonymousUsage = false;
};
entryPoints = {
websecure = {
address = ":443";
forwardedHeaders.insecure = true;
};
web = {
address = ":80";
forwardedHeaders.insecure = true;
};
};
};
};
}