initial commit

2025-11-09 23:51:40 -05:00 · 2025-11-09 23:51:40 -05:00 · 4014d5e658
commit 4014d5e658
30 changed files with 911 additions and 0 deletions
--- a/hosts/crayon/nginx.nix
+++ b/hosts/crayon/nginx.nix
@ -0,0 +1,46 @@
+{ pkgs, config, ... }:
+let
+  mkVirtHosts = virtHosts:
+    builtins.listToAttrs (builtins.map (name: {
+      name = name;
+      value = (builtins.import ./www/${name}.nix {
+        # we have to explicitly pass in arguments because we're using import
+        phpsock = config.services.phpfpm.pools.nginx.socket;
+        inherit pkgs;
+      });
+    }) <| virtHosts);
+in {
+  networking.firewall.allowedTCPPorts = [ 80 443 ];
+
+  # setup phpfpm pooler for sites using php
+  services.phpfpm.pools = {
+    nginx = {
+      user = config.services.nginx.user;
+      group = config.services.nginx.group;
+      phpPackage = pkgs.php;
+      settings = {
+        "listen.owner" = config.services.nginx.user;
+        "listen.group" = config.services.nginx.group;
+        "listen.mode" = "0660";
+        "pm" = "dynamic";
+        "pm.max_children" = 5;
+        "pm.start_servers" = 2;
+        "pm.min_spare_servers" = 1;
+        "pm.max_spare_servers" = 3;
+      };
+    };
+  };
+
+  services.nginx = {
+    enable = true;
+    recommendedTlsSettings = true;
+    recommendedOptimisation = true;
+    recommendedGzipSettings = true;
+
+    virtualHosts = mkVirtHosts [
+      "squi.bid"
+      "5438.squi.bid"
+      "voidpkgs.squi.bid"
+    ];
+  };
+}