summaryrefslogtreecommitdiff
path: root/hosts/ahmed/cloudflare-ddns.nix
diff options
context:
space:
mode:
Diffstat (limited to 'hosts/ahmed/cloudflare-ddns.nix')
-rw-r--r--hosts/ahmed/cloudflare-ddns.nix23
1 files changed, 23 insertions, 0 deletions
diff --git a/hosts/ahmed/cloudflare-ddns.nix b/hosts/ahmed/cloudflare-ddns.nix
new file mode 100644
index 0000000..58f53b0
--- /dev/null
+++ b/hosts/ahmed/cloudflare-ddns.nix
@@ -0,0 +1,23 @@
+# This module sets up cloudflare-dyndns for <linus.onl>.
+
+{ lib, config, ... }:
+
+let
+
+in
+{
+ age.secrets.cloudflare-dyndns-api-token = {
+ file = ../../secrets/cloudflare-ddns-token.age;
+ # TODO: configure permissions
+ };
+
+ services.cloudflare-dyndns = {
+ enable = true;
+ apiTokenFile = config.age.secrets.cloudflare-dyndns-api-token.path;
+ proxied = true;
+ domains = [ "linus.onl" ];
+ };
+
+ # Override the systemd service generated by `services.cloudflare-dyndns` to wait for key to be decrypted.
+ systemd.services.cloudflare-dyndns.after = [ "cloudflare-ddns-key.service" ];
+}
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-08 04:55:09 +0000