Cloonar/nixos
2
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity

feat: web-arm add fueltide deep link vhost

Browse source
This commit is contained in:
Dominik Polakovics Polakovics 2026-04-20 12:30:44 +02:00
parent 47e3d0b55f
commit 23442bb6ea
1 changed files with 29 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

29
hosts/web-arm/sites/fueltide.io.nix
View file

@ -1,4 +1,19 @@
{ pkgs, lib, config, ... }:
let
# Universal Links / Associated Domains for the iOS workout app
appleAppSiteAssociation = {
applinks = {
details = [
{
appIDs = [ "XWJ4DC7TBH.io.fueltide.workout" ];
components = [
{ "/" = "/auth/*"; }
];
}
];
};
};
in
{
# SOPS secret for fueltide.io DNS credentials (separate Hetzner API token)
sops.secrets.fueltide-lego-credentials = { };
@ -17,6 +32,10 @@
credentialsFile = config.sops.secrets.fueltide-lego-credentials.path;
};
security.acme.certs."link.fueltide.io" = {
credentialsFile = config.sops.secrets.fueltide-lego-credentials.path;
};
security.acme.certs."stage.fueltide.io" = {
credentialsFile = config.sops.secrets.fueltide-lego-credentials.path;
};
@ -25,6 +44,16 @@
credentialsFile = config.sops.secrets.fueltide-lego-credentials.path;
};
services.nginx.virtualHosts."link.fueltide.io" = {
enableACME = true;
forceSSL = true;
locations."= /.well-known/apple-app-site-association".extraConfig = ''
default_type application/json;
return 200 '${builtins.toJSON appleAppSiteAssociation}';
'';
};
services.webstack.instances."stage.fueltide.io" = {
enablePhp = false;
enableDefaultLocations = false;