remove commented out config and fix format

2021-08-31 20:51:15 +02:00 · 2021-08-31 20:51:15 +02:00 · 7b0bd4e789
parent 005688c212
commit 7b0bd4e789
6 changed files with 21 additions and 49 deletions
--- a/configuration.nix
+++ b/configuration.nix
@ -19,14 +19,10 @@

  # Boot
  boot.loader.grub.enable = false;
-  #boot.loader.raspberryPi.enable = true;
-  #boot.loader.raspberryPi.version = 4;
  boot.loader.generic-extlinux-compatible.enable = true;
-  #boot.loader.generationsDir.enable = true;

  # Kernel configuration
  boot.kernelPackages = pkgs.linuxPackages_rpi4;
-  #hardware.deviceTree.kernelPackage = pkgs.linux_rpi4;
  boot.kernelParams = [ "console=ttyAMA0,115200n8" ];

  # Enable additional firmware (such as Wi-Fi drivers).
@ -40,19 +36,6 @@
  networking.useDHCP = false;
  networking.interfaces.eth0.useDHCP = true;

-  # simple wireguard vpn
-  #networking.wireguard.interfaces.wg0 = {
-  #  ips = [ "10.0.69.1/24" ];
-  #  privateKey = "EEMw16rqdUCLwuhSlGYINXwUGo+kj88EBTBjl/6QwFU=";
-  #  listenPort = 51666;
-  #  peers = [
-  #    {
-  #      allowedIPs = [ "10.0.69.0/24" ];
-  #      publicKey = "uFNoJWwVEWHMn7FRrxQm//pDXsKXLyIA4x3y6Q9+wlY=";
-  #    }
-  #  ];
-  #};
-
  security.acme.email = "webmaster@bib3.de";
  security.acme.acceptTerms = true;

@ -63,10 +46,6 @@
  services.openssh.enable = true;
  networking.firewall.allowPing = false;
  networking.firewall.allowedTCPPorts = [ 22 80 443 ];
-  networking.firewall.allowedUDPPorts = [ 51666 ]; # Wireguard
-  networking.firewall.extraCommands = ''
-    iptables -A INPUT -p tcp -s 95.90.117.138 -j ACCEPT
-  '';

  # Define a user account. Don't forget to set a password with ‘passwd’.
  users.users.loooph = {
--- a/nginx.nix
+++ b/nginx.nix
@ -10,7 +10,7 @@ in
    recommendedOptimisation = true;
    recommendedGzipSettings = true;
    recommendedProxySettings = true;
-		# nginx would warn otherwise
+    # nginx would warn otherwise
    mapHashBucketSize = 64;

    virtualHosts = {
@ -20,11 +20,10 @@ in
        root = "/var/www/default";
      };

-			"www.${fqdn}" = {
-				enableACME = true;
-				#globalRedirect = "${fqdn}";
+      "www.${fqdn}" = {
+        enableACME = true;
        root = "/var/www/default";
-			};
+      };
    };
  };
 }
--- a/openldap.nix
+++ b/openldap.nix
@ -9,11 +9,6 @@

  services.openldap = {
    enable = true;
-    #database = "mdb";
-    #dataDir = "/var/lib/openldap";
-    #rootpwFile = "/etc/nixos/secret/openldaproot.pw";
-    #suffix = "o=bib3,c=DE";
-    #rootdn = "cn=admin,o=bib3,c=DE";
    settings = {
      children = {
        "cn=schema".includes = [
--- a/sd.nix
+++ b/sd.nix
@ -10,7 +10,7 @@ in
    recommendedOptimisation = true;
    recommendedGzipSettings = true;
    recommendedProxySettings = true;
-		# nginx would warn otherwise
+    # nginx would warn otherwise
    mapHashBucketSize = 64;

    virtualHosts = {
@ -20,11 +20,10 @@ in
        root = "/var/www/schwulesding";
      };

-			"www.${fqdn}" = {
-				enableACME = true;
-				#globalRedirect = "${fqdn}";
+      "www.${fqdn}" = {
+        enableACME = true;
        root = "/var/www/schwulesding";
-			};
+      };
    };
  };
 }