kvernberg/taler: move behind nginx

2024-11-17 12:52:55 +01:00 · 2024-11-17 12:52:55 +01:00 · 0cb0a49565
parent eb2ab88f1c
commit 0cb0a49565
4 changed files with 28 additions and 9 deletions
--- a/hosts/kvernberg/configuration.nix
+++ b/hosts/kvernberg/configuration.nix
@ -7,6 +7,7 @@
    (fp /misc/metrics-exporters.nix)
    ./disks.nix
    ./services/nginx.nix
    ./services/pvvvvvv
  ];
--- a/hosts/kvernberg/services/nginx.nix
+++ b/hosts/kvernberg/services/nginx.nix
@ -0,0 +1,5 @@
 { config, lib, ... }:
 {
  services.nginx.enable = true;
 }
--- a/hosts/kvernberg/services/pvvvvvv/bank.nix
+++ b/hosts/kvernberg/services/pvvvvvv/bank.nix
@ -7,7 +7,6 @@ in {
  services.libeufin.bank = {
    enable = true;
    debug = true;
    openFirewall = true;
    createLocalDatabase = true;
    initialAccounts = [
      { username = "exchange";
@ -18,23 +17,31 @@ in {
    settings = {
      libeufin-bank = {
        WIRE_TYPE = "x-taler-bank";
-        X_TALER_BANK_PAYTO_HOSTNAME = "kvernberg.pvv.ntnu.no:8082";
+        X_TALER_BANK_PAYTO_HOSTNAME = "bank.kvernberg.pvv.ntnu.no";
-        BASE_URL = "kvernberg.pvv.ntnu.no:8082";
+        BASE_URL = "bank.kvernberg.pvv.ntnu.no";
        ALLOW_REGISTRATION = "yes";
        REGISTRATION_BONUS_ENABLED = "yes";
-        REGISTRATION_BONUS = "${CURRENCY}:100";
+        REGISTRATION_BONUS = "${CURRENCY}:500";
-        DEFAULT_DEBT_LIMIT = "${CURRENCY}:500";
+        DEFAULT_DEBT_LIMIT = "${CURRENCY}:0";
        ALLOW_CONVERSION = "no";
        ALLOW_EDIT_CASHOUT_PAYTO_URI = "yes";
-        SUGGESTED_WITHDRAWAL_EXCHANGE = "http://kvernberg.pvv.ntnu.no:8081/";
+        SUGGESTED_WITHDRAWAL_EXCHANGE = "https://exchange.kvernberg.pvv.ntnu.no/";
        inherit CURRENCY;
      };
    };
  };
  services.nginx.virtualHosts."bank.kvernberg.pvv.ntnu.no" = {
    enableACME = true;
    forceSSL = true;
    kTLS = true;
    locations."/".proxyPass = "http://127.0.0.1:8082";
  };
 }
--- a/hosts/kvernberg/services/pvvvvvv/exchange.nix
+++ b/hosts/kvernberg/services/pvvvvvv/exchange.nix
@ -11,7 +11,6 @@ in {
  services.taler.exchange = {
    enable = true;
    debug = true;
    openFirewall = true;
    denominationConfig = ''
      ## Old denomination names cannot be used again
      # [COIN-${CURRENCY}-k1-1-0]
@ -148,16 +147,23 @@ in {
        MASTER_PRIV_FILE = config.sops.secrets.exchange-offline-master.path;
      };
      exchange-account-test = {
-        PAYTO_URI = "payto://x-taler-bank/bank:8082/exchange?receiver-name=Exchange";
+        PAYTO_URI = "payto://x-taler-bank/bank.kvernberg.pvv.ntnu.no/exchange?receiver-name=Exchange";
        ENABLE_DEBIT = "YES";
        ENABLE_CREDIT = "YES";
      };
      exchange-accountcredentials-test = {
-        WIRE_GATEWAY_URL = "http://kvernberg.pvv.ntnu.no:8082/accounts/exchange/taler-wire-gateway/";
+        WIRE_GATEWAY_URL = "http://bank.kvernberg.pvv.ntnu.no/accounts/exchange/taler-wire-gateway/";
        WIRE_GATEWAY_AUTH_METHOD = "BASIC";
        USERNAME = "exchange";
        PASSWORD = "exchange";
      };
    };
  };
  services.nginx.virtualHosts."exchange.kvernberg.pvv.ntnu.no" = {
    enableACME = true;
    forceSSL = true;
    kTLS = true;
    locations."/".proxyPass = "http://127.0.0.1:8081";
  };
 }