Antoine Martin
e7219ae988
This is a requirement anyway for homeservers, and the `forceSSL` option tried to create a redirect for non-SSL traffic, except the `listen` option only provided SSL endpoints anyway, so this resulted in additional rules in the nginx config looking like this: server { server_name matrix.alarsyo.net ; location /.well-known/acme-challenge { root /var/lib/acme/acme-challenge; auth_basic off; } location / { return 301 https://$host$request_uri; } } Which led to nginx listening on port 8000 (the default port in this situation, I imagine) |
||
---|---|---|
.. | ||
gitea | ||
grafana-dashboards | ||
bitwarden_rs.nix | ||
borg-backup.nix | ||
default.nix | ||
fail2ban.nix | ||
jellyfin.nix | ||
lohr.nix | ||
matrix.nix | ||
media.nix | ||
miniflux.nix | ||
monitoring.nix | ||
nextcloud.nix | ||
nginx.nix | ||
nuage.nix | ||
paperless.nix | ||
pipewire.nix | ||
postgresql-backup.nix | ||
postgresql.nix | ||
tgv.nix | ||
transmission.nix | ||
wireguard.nix |