sid/sid.ovh
1
0
Fork 0
Code Issues 3 Pull requests 2 Projects Releases Packages Wiki Activity Actions

netdata: ui should only be reachable inside tailnet #95

Merged
sid merged 3 commits from develop into master 2026-05-22 21:28:28 +02:00
Conversation 0 Commits 3 Files changed 2 +15 -14
1 changed files with 15 additions and 14 deletions
Download patch file Download diff file Expand all files Collapse all files
Showing only changes of commit eac7803895 - Show all commits

29
hosts/sid/services/netdata.nix
View file

@ -55,20 +55,21 @@ in
NETDATA_USER_CONFIG_DIR = "/etc/netdata/conf.d";
};
services.nginx.virtualHosts."${constants.services.netdata.fqdn}" = {
enableACME = true;
forceSSL = true;
locations."/" = {
root = netdata-dashboard;
tryFiles = "$uri $uri/ /index.html";
};
locations."~ ^/(api|v[0-9]+|netdata.conf|registry|stream|version.txt)(/|$)" = {
proxyPass = "http://127.0.0.1:${toString constants.services.netdata.port}";
recommendedProxySettings = true;
};
};
# TODO: move into Tailnet
# services.nginx.virtualHosts."${constants.services.netdata.fqdn}" = {
# enableACME = true;
# forceSSL = true;
#
# locations."/" = {
# root = netdata-dashboard;
# tryFiles = "$uri $uri/ /index.html";
# };
#
# locations."~ ^/(api|v[0-9]+|netdata.conf|registry|stream|version.txt)(/|$)" = {
# proxyPass = "http://127.0.0.1:${toString constants.services.netdata.port}";
# recommendedProxySettings = true;
# };
# };
services.journald.storage = "persistent";