diff --git a/machines/heimdall/configuration.nix b/machines/heimdall/configuration.nix index 221d006..cf5423c 100644 --- a/machines/heimdall/configuration.nix +++ b/machines/heimdall/configuration.nix @@ -85,6 +85,23 @@ }; services.tailscale.enable = true; + services.caddy = { + virtualHosts = { + "datarift.nl" = { + extraConfig = '' + @webfinger-erwin { + path /.well-known/webfinger + query resource=acct:erwin@datarift.nl + } + respond @webfinger-erwin 200 { + body `{"subject":"acct:erwin@datarift.nl","links":[{"rel":"http://openid.net/specs/connect/1.0/issuer","href":"https://id.datarift.nl/realms/datarift"}]}` + close + } + ''; + }; + }; + }; + security.apparmor = { enable = true; killUnconfinedConfinables = true;