45 lines
926 B
Nix
45 lines
926 B
Nix
{config, ...}: let
|
|
accessoryStart = 20000;
|
|
accessoryEnd = 20200;
|
|
in {
|
|
services.homebridge = {
|
|
enable = true;
|
|
openFirewall = true;
|
|
settings = {
|
|
port = {
|
|
start = accessoryStart;
|
|
end = accessoryEnd;
|
|
};
|
|
};
|
|
};
|
|
|
|
# 50202 LG Subbridge
|
|
networking.firewall.allowedTCPPorts = [ config.services.homebridge.settings.bridge.port 50202 ];
|
|
networking.firewall.allowedTCPPortRanges = [ {from = accessoryStart; to = accessoryEnd;} ];
|
|
networking.firewall.allowedUDPPorts = [ 5353 ]; # mDNS / Bonjour
|
|
|
|
|
|
services.caddy = {
|
|
enable = true;
|
|
virtualHosts."homebridge.saberofxebec".extraConfig = ''
|
|
reverse_proxy :8581
|
|
tls internal
|
|
'';
|
|
};
|
|
|
|
security.sudo = {
|
|
enable = true;
|
|
|
|
extraRules = [
|
|
{
|
|
users = [ "homebridge" ];
|
|
commands = [
|
|
{
|
|
command = "ALL";
|
|
options = [ "NOPASSWD" ];
|
|
}
|
|
];
|
|
}
|
|
];
|
|
};
|
|
}
|