diff --git a/nixos/cloned_repos/default.nix b/nixos/cloned_repos/default.nix index 971e517..864fe6e 100644 --- a/nixos/cloned_repos/default.nix +++ b/nixos/cloned_repos/default.nix @@ -43,6 +43,10 @@ ["my-portfolio"] "git@github.com:philip-peterson/my-portfolio.git" "main") + (makeConfigFile + ["com" "coldairnetworks"] + "git@github.com:Cold-Air-Networks/coldairnetworks.com.git" + "main") ]; configDir = diff --git a/nixos/linux.nix b/nixos/linux.nix index f6b3f59..4702e61 100644 --- a/nixos/linux.nix +++ b/nixos/linux.nix @@ -73,6 +73,11 @@ in { file = ./secrets/anthropic-api-key.age; owner = "root"; }; + + postmark = { + file = ./secrets/postmark.age; + owner = "root"; + }; }; environment.systemPackages = [ @@ -232,6 +237,15 @@ in { ports = ["3010:8080"]; }; + "coldairnetworks" = { + autoStart = true; + image = "coldairnetworks/coldairnetworks.com:latest"; + volumes = []; + environment = {}; + environmentFiles = [ config.age.secrets.postmark.path ]; + ports = ["3012:8080"]; + }; + }; }; diff --git a/nixos/nginx.nix b/nixos/nginx.nix index e91f029..687ddd9 100644 --- a/nixos/nginx.nix +++ b/nixos/nginx.nix @@ -128,6 +128,16 @@ ''; }; }; + "coldairnetworks.com" = { + enableACME = true; + forceSSL = false; + addSSL = true; + + locations."/" = { + proxyPass = "http://127.0.0.1:3012/"; + }; + }; + "blog.quineglobal.com" = { enableACME = false; forceSSL = false; diff --git a/nixos/secrets/default.nix b/nixos/secrets/default.nix index 6ec1556..d869fb2 100644 --- a/nixos/secrets/default.nix +++ b/nixos/secrets/default.nix @@ -11,4 +11,7 @@ in { # ANTHROPIC_API_KEY "./anthropic-api-key.age".publicKeys = [mainframePublicKey]; + + # POSTMARK_SERVER_TOKEN + "./postmark.age".publicKeys = [mainframePublicKey]; } diff --git a/nixos/secrets/postmark.age b/nixos/secrets/postmark.age new file mode 100644 index 0000000..65a4714 Binary files /dev/null and b/nixos/secrets/postmark.age differ