1  { inputs, config, pkgs, lib, modulesPath, hostname, modulespath, ... }:
 2  
 3  {
 4    imports = [
 5      ../../modules/virtualization/lxc/proxmox-lxc.nix
 6      (modulespath + /server/security/acme/cloudflare.nix)
 7      (modulespath + /server/web/nginx)
 8      (modulespath + /server/git/forgejo)
 9      (modulespath + /server/git/radicle)
10      (modulespath + /server/git/opengist)
11      (modulespath + /server/automation/ansible/client.nix)
12    ];
13  
14    home-manager = import ../../home-manager;
15  
16    modules.acme.certs = {
17      "forgejo.spacetime.technology" = {
18        domain = "forgejo.spacetime.technology";
19      };
20      "rad.spacetime.technology" = {
21        domain = "rad.spacetime.technology";
22      };
23      "explore.rad.spacetime.technology" = {
24        domain = "explore.rad.spacetime.technology";
25      };
26      "gist.spacetime.technology" = {
27        domain = "gist.spacetime.technology";
28      };
29    };
30  
31    networking = {
32      hostName = hostname;
33      firewall = {
34        enable = true;
35        allowedTCPPorts = [ 80 443 ];
36        allowedUDPPorts = [ 443 ];
37      };
38    };
39  }