Tom Hubrecht
5668b6bbfd
Some checks failed
build configuration / build_storage01 (push) Successful in 1m14s
build configuration / build_vault01 (push) Successful in 1m15s
build configuration / build_compute01 (push) Successful in 1m17s
build configuration / build_rescue01 (push) Successful in 1m18s
build configuration / build_web01 (push) Successful in 1m30s
lint / check (push) Successful in 24s
build configuration / build_web02 (push) Failing after 2m13s
build configuration / push_to_cache (push) Has been skipped
36 lines
645 B
Nix
36 lines
645 B
Nix
{ lib, pkgs, ... }:
|
|
|
|
lib.extra.mkConfig {
|
|
enabledModules = [
|
|
# List of modules to enable
|
|
"dgn-fail2ban"
|
|
"dgn-web"
|
|
];
|
|
|
|
enabledServices = [
|
|
# List of services to enable
|
|
"cas-eleves"
|
|
];
|
|
|
|
extraConfig = {
|
|
dgn-fail2ban.jails = lib.extra.enableAttrs' "enabled" [
|
|
"sshd-bruteforce"
|
|
"sshd-timeout"
|
|
];
|
|
|
|
# Restrict access to this node
|
|
dgn-access-control.users.root = [ "thubrecht" ];
|
|
|
|
# Disable monitoring
|
|
dgn-node-monitoring.enable = false;
|
|
|
|
# Enable Postgres databases
|
|
services.postgresql = {
|
|
enable = true;
|
|
|
|
package = pkgs.postgresql_16;
|
|
};
|
|
};
|
|
|
|
root = ./.;
|
|
}
|