From 6eb614ec543f1735ae5e04bdfc730c51a9c5f93a Mon Sep 17 00:00:00 2001 From: niten Date: Thu, 18 Jan 2024 13:42:33 -0800 Subject: [PATCH] Don't change the settings on the parent host. --- mastodon-container.nix | 22 +++++++++++----------- 1 file changed, 11 insertions(+), 11 deletions(-) diff --git a/mastodon-container.nix b/mastodon-container.nix index 2e0bd53..b5da4e8 100644 --- a/mastodon-container.nix +++ b/mastodon-container.nix @@ -124,6 +124,17 @@ in { streamingProcesses = cfg.streaming-processes; }; nginx = { + recommendedTlsSettings = true; + recommendedGzipSettings = true; + recommendedOptimisation = true; + recommendedProxySettings = true; + commonHttpConfig = '' + log_format with_response_time '$remote_addr - $remote_user [$time_local] ' + '"$request" $status $body_bytes_sent ' + '"$http_referer" "$http_user_agent" ' + '"$request_time" "$upstream_response_time"'; + access_log /var/log/nginx/access.log with_response_time; + ''; virtualHosts."${cfg.hostname}" = { forceSSL = false; enableACME = false; @@ -139,17 +150,6 @@ in { services.nginx = { enable = true; - commonHttpConfig = '' - log_format with_response_time '$remote_addr - $remote_user [$time_local] ' - '"$request" $status $body_bytes_sent ' - '"$http_referer" "$http_user_agent" ' - '"$request_time" "$upstream_response_time"'; - access_log /var/log/nginx/access.log with_response_time; - ''; - recommendedTlsSettings = true; - recommendedGzipSettings = true; - recommendedOptimisation = true; - recommendedProxySettings = true; virtualHosts."${cfg.hostname}" = { enableACME = true; forceSSL = true;