From 0996e3953c512755f416f8e03293138a33efafed Mon Sep 17 00:00:00 2001
From: David Crompton <david.crompton@mail.utoronto.ca>
Date: Thu, 26 Oct 2023 13:12:34 -0400
Subject: [PATCH] Enable Caddy & Gitea

---
 machines/kcnhub/servers.nix       |  2 ++
 machines/kcnhub/servers/caddy.nix | 21 +++++++++++++++++++++
 2 files changed, 23 insertions(+)
 create mode 100644 machines/kcnhub/servers/caddy.nix

diff --git a/machines/kcnhub/servers.nix b/machines/kcnhub/servers.nix
index 498bfb3..383bf4d 100644
--- a/machines/kcnhub/servers.nix
+++ b/machines/kcnhub/servers.nix
@@ -1,5 +1,7 @@
 { ... }: {
   imports = [
+    ./servers/caddy.nix
     ./servers/xpra.nix
+    ./servers/gitea.nix
   ];
 }
diff --git a/machines/kcnhub/servers/caddy.nix b/machines/kcnhub/servers/caddy.nix
new file mode 100644
index 0000000..b1a6c6c
--- /dev/null
+++ b/machines/kcnhub/servers/caddy.nix
@@ -0,0 +1,21 @@
+{ config, pkgs, lib, ... }:
+
+{
+  services.caddy = {
+    enable = true;
+  };
+  # Need 80 & 443 Enabled so Caddy is externally accessible
+  networking.firewall = let
+    ports = [ 80 443 ];
+  in {
+    allowedTCPPorts = ports;
+    allowedUDPPorts = ports;
+  };
+  services.caddy.virtualHosts = lib.mkAfter {
+    "*.ws.kcnhub.com" = {
+      extraConfig = ''
+        error 404
+      '';
+    };
+  };
+}