From 67305549bcfae76471c20a0c0a01c4eddd138820 Mon Sep 17 00:00:00 2001 From: servius Date: Wed, 14 Jan 2026 11:45:10 +0530 Subject: [PATCH] feat: Added kellnr --- nixos/tako/services/default.nix | 1 + nixos/tako/services/kellnr.nix | 42 +++++++++++++++++++++++++++++++++ 2 files changed, 43 insertions(+) create mode 100644 nixos/tako/services/kellnr.nix diff --git a/nixos/tako/services/default.nix b/nixos/tako/services/default.nix index b8ca2592..171c9501 100644 --- a/nixos/tako/services/default.nix +++ b/nixos/tako/services/default.nix @@ -23,6 +23,7 @@ ./resolved.nix ./searxng.nix ./tailscale.nix + ./kellnr.nix ]; services = { nix-serve = { diff --git a/nixos/tako/services/kellnr.nix b/nixos/tako/services/kellnr.nix new file mode 100644 index 00000000..dd91e990 --- /dev/null +++ b/nixos/tako/services/kellnr.nix @@ -0,0 +1,42 @@ +# docker run --rm -it \ +# -p 8000:8000 \ +# -e "KELLNR_ORIGIN__HOSTNAME=kellnr.example.com" \ +# -v $(pwd):/opt/kdata ghcr.io/kellnr/kellnr:5 +{...}: let + port = 8899; + domain = "crates.darksailor.dev"; +in { + virtualisation.oci-containers = { + backend = "docker"; + containers = { + excalidraw = { + image = "ghcr.io/kellnr/kellnr:5"; + ports = ["127.0.0.1:${toString port}:8000"]; + volumes = [ + "/var/lib/kellnr:/opt/kdata" + ]; + environment = { + "KELLNR_ORIGIN__HOSTNAME" = domain; + }; + }; + }; + }; + services.caddy.virtualHosts.domain.extraConfig = '' + import auth + reverse_proxy localhost:${toString port} + ''; + services.authelia = { + instances.darksailor = { + settings = { + access_control = { + rules = [ + { + inherit domain; + policy = "one_factor"; + } + ]; + }; + }; + }; + }; +}