Files
homelab/config/finances-fireflyiii.nix
T
Xavier Morel 1fe2817294
Gitea Actions Demo / Explore-Gitea-Actions (push) Successful in 4s
fix: fix x-forwarded-proto borked by authentik
2026-03-26 22:14:37 +01:00

38 lines
988 B
Nix

{
config,
tools,
...
}:
let
name = "finances";
db_ip = tools.build_ip "db";
in
{
environment.etc."firefly-iii/app.key" = {
source = config.age.secrets.finances-app-key.path;
user = "firefly-iii";
group = "nginx";
};
services.firefly-iii = {
enable = true;
enableNginx = true;
virtualHost = "finances.plg.m0rel.eu";
settings = {
SITE_OWNER = config.globals.master.email;
DB_CONNECTION = "pgsql";
DB_HOST = db_ip;
DB_PORT = 5432;
DB_DATABASE = name;
DB_USERNAME = name;
DB_PASSWORD = config.my-lxc.finances.db.password;
AUTHENTICATION_GUARD = "remote_user_guard";
AUTHENTICATION_GUARD_HEADER = "HTTP_X_AUTHENTIK_EMAIL";
AUTHENTICATION_GUARD_EMAIL = "HTTP_X_AUTHENTIK_EMAIL";
APP_URL = "https://${tools.build_hostname "finances"}";
APP_KEY_FILE = "/etc/firefly-iii/app.key";
TRUSTED_PROXIES = tools.build_ip "proxy";
TZ = config.globals.default_tz;
};
};
}