mjallen/nix-config
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Files
2e4b6298051966c98f665aef554aff4b9c0109c6
nix-config/modules/nixos/services/headscale/default.nix
mjallen18 35733e1044 hyprland
2025-10-24 09:58:59 -05:00

63 lines
1.5 KiB
Nix
Raw Blame History

{
config,
lib,
namespace,
...
}:
with lib;
let
inherit (lib.${namespace}) mkOpt mkReverseProxyOpt;
cfg = config.${namespace}.services.headscale;
headscaleConfig = {
services.headscale = {
enable = true;
address = "0.0.0.0";
port = cfg.port;
settings = {
server_url = "https://headscale.mjallen.dev:443";
database.sqlite.path = "${cfg.dataDir}/db.sqlite";
dns = {
nameservers.global = [
"1.1.1.1"
"8.8.8.8"
];
base_domain = "tailnet.mjallen.dev";
magic_dns = true;
};
};
# oidc
};
};
# Create reverse proxy configuration using mkReverseProxy
reverseProxyConfig = lib.${namespace}.mkReverseProxy {
name = "headscale";
subdomain = cfg.reverseProxy.subdomain;
url = "http://${cfg.localAddress}:${toString cfg.port}";
middlewares = cfg.reverseProxy.middlewares;
};
fullConfig = {
"${namespace}".services.traefik = lib.mkIf cfg.reverseProxy.enable {
reverseProxies = [ reverseProxyConfig ];
};
}
// headscaleConfig;
in
{
options.${namespace}.services.headscale = {
enable = mkEnableOption "headscale service";
port = mkOpt types.int 8080 "Port for headscale to be hosted on";
localAddress = mkOpt types.str "127.0.0.1" "local address of the service";
dataDir = mkOpt types.str "" "Path to the data dir";
reverseProxy = mkReverseProxyOpt;
};
config = mkIf cfg.enable fullConfig;
}
Reference in New Issue View Git Blame Copy Permalink