feat(hakurei): cloudflared

2026-02-09 04:19:19 -08:00 · 2024-01-20 13:54:29 -08:00 · 2024-01-20 13:54:29 -08:00 · 7ded53ccc1
commit 7ded53ccc1
parent ddcdcb0e0e
10 changed files with 258 additions and 15 deletions
--- a/systems/hakurei/nixos.nix
+++ b/systems/hakurei/nixos.nix
@ -10,9 +10,27 @@
    nixos.base
    nixos.reisen-ct
    nixos.tailscale
+    nixos.cloudflared
    nixos.nginx
+    nixos.access.proxmox
  ];

+  sops.secrets.cloudflared-tunnel-hakurei = {
+    owner = config.services.cloudflared.user;
+  };
+
+  services.cloudflared = let
+    tunnelId = "964121e3-b3a9-4cc1-8480-954c4728b604";
+  in {
+    tunnels.${tunnelId} = {
+      default = "http_status:404";
+      credentialsFile = config.sops.secrets.cloudflared-tunnel-hakurei.path;
+      ingress = {
+        "prox.${config.networking.domain}".service = "http://localhost";
+      };
+    };
+  };
+
  sops.defaultSopsFile = ./secrets.yaml;

  system.stateVersion = "23.11";