ashie/nixos-vps
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
85 commits 1 branch 0 tags 134 KiB
Commit graph

17 commits

Author SHA1 Message Date
ashisgreat22
1c56d477fa Cleanup 2026-03-18 21:23:37 +01:00
ashisgreat22
e1d18c18be Cleanup 2026-03-18 21:22:19 +01:00
ashisgreat22
1792180144 Cleanup 2026-03-18 21:20:42 +01:00
ashisgreat22
1942425605 feat(adguard): enable DoT and fix ClientID injection 
- Enable DNS-over-TLS (DoT) on port 853 using Nginx's ACME certificates
- Fix an issue where the native NixOS module dropped SOPS client IDs
- Use sops.templates and yq to inject ClientIDs dynamically before start
- Enable allow_unencrypted_doh to fix Nginx proxying DoH correctly
 2026-03-18 21:12:31 +01:00
ashisgreat22
5dd91f74b1 fix(adguard): resolve port 53 conflict 
Change AdGuard Home DNS listener to bind to 127.0.0.1:5353 to avoid conflicting with existing services on port 53, since we only expose DoH via Nginx.
 2026-03-18 20:58:07 +01:00
ashisgreat22
219391bc85 refactor(adguard): migrate to native nixos service 
Replace the Podman container and manual YAML templating with the native  NixOS module for better system integration and simpler declarative configuration.
 2026-03-18 20:56:30 +01:00
ashisgreat22
7a505055f8 fix(adguard): fix string interpolation syntax error 
Fix a broken string concatenation that was causing a syntax error during NixOS evaluation.

Co-Authored-By: Gemini CLI <noreply@google.com>
 2026-03-18 20:49:31 +01:00
ashisgreat22
93bef3b301 fix(adguard): rewrite with correct lib.length syntax 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 19:51:53 +01:00
ashisgreat22
7bdbe767b6 fix(adguard): use lib.length instead of == for empty check 
Nix doesn't support == operator.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 19:27:47 +01:00
ashisgreat22
51e937c02f fix(adguard): add empty clients list when no clients configured 
AdGuard Home fails with empty persistent list.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 19:27:21 +01:00
ashisgreat22
7b9b1e1909 fix(adguard): add newline before filtering section 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 19:26:40 +01:00
ashisgreat22
a5d1f3e136 fix(adguard): fix YAML structure - clients at correct level 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 19:24:37 +01:00
ashisgreat22
ce152ba2b3 fix(adguard): fix template string concatenation 
Properly concatenate optionalString with content.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 19:23:51 +01:00
ashisgreat22
294b556542 fix(adguard): handle empty clients list 
Only render clients section when clients are configured.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 19:22:58 +01:00
ashisgreat22
23696e7e79 fix(adguard): remove --cap-drop=ALL flag 
AdGuard Home needs capabilities to run.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 19:20:41 +01:00
ashisgreat22
9b1d5ede54 fix(adguard): remove --read-only flag 
AdGuard Home needs write access to working directory.
Config file remains read-only via :ro mount.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 19:19:30 +01:00
ashisgreat22
1ed9acdcda feat(modules): add AdGuard Home module with DoH and ClientID support 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 19:07:59 +01:00