From 80ef3f0e6c110e2918911fef040ce6596e27f6f9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Leonardo=20Eug=C3=AAnio?= <lelgenio@disroot.org>
Date: Wed, 29 Nov 2023 01:41:26 -0300
Subject: [PATCH] ghost: create rena wiki

---
 hosts/ghost/default.nix    |  1 +
 hosts/ghost/renawiki.nix   | 23 +++++++++++++++++++++++
 secrets/ghost-renawiki.age | 16 ++++++++++++++++
 secrets/secrets.nix        |  1 +
 4 files changed, 41 insertions(+)
 create mode 100644 hosts/ghost/renawiki.nix
 create mode 100644 secrets/ghost-renawiki.age

diff --git a/hosts/ghost/default.nix b/hosts/ghost/default.nix
index 7784d39..3d1afc8 100644
--- a/hosts/ghost/default.nix
+++ b/hosts/ghost/default.nix
@@ -10,6 +10,7 @@
     ./syncthing.nix
     ./users.nix
     ./writefreely.nix
+    ./renawiki.nix
   ];
 
   # Use more aggressive compression then the default.
diff --git a/hosts/ghost/renawiki.nix b/hosts/ghost/renawiki.nix
new file mode 100644
index 0000000..009e06e
--- /dev/null
+++ b/hosts/ghost/renawiki.nix
@@ -0,0 +1,23 @@
+{ config, pkgs, inputs, ... }: {
+  services.mediawiki = {
+    enable = true;
+    name = "Rena Wiki";
+
+    webserver = "nginx";
+    nginx.hostName = "renawiki.lelgenio.xyz";
+    passwordFile = config.age.secrets.ghost-renawiki.path;
+
+    extensions.VisualEditor = null;
+  };
+  services.nginx.virtualHosts."renawiki.lelgenio.xyz" = {
+    enableACME = true;
+    forceSSL = true;
+  };
+
+  age.secrets.ghost-renawiki = {
+    file = ../../secrets/ghost-renawiki.age;
+    mode = "400";
+    owner = "mediawiki";
+  };
+}
+
diff --git a/secrets/ghost-renawiki.age b/secrets/ghost-renawiki.age
new file mode 100644
index 0000000..cdc2801
--- /dev/null
+++ b/secrets/ghost-renawiki.age
@@ -0,0 +1,16 @@
+age-encryption.org/v1
+-> ssh-rsa BwwxHg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+-> \z/RLj3S-grease cmv( uCkG*= .cX3S 9r^&
+OVTVTnB3PjD4COiRCtQ
+--- EhfDqxfjLIHF9Sa7V4ytO1xsRK8p23WDsWcB9/B9fRw
+.ß=–£))/’ö‰Í¹êÒ‹#´ýLÁƒŒÓ‰Ž—|p
+7	ÍñÄKä®7ò²Š@üCJfš:w6Pè•@@/N7¿
\ No newline at end of file
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index 6d60a61..01af754 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -9,4 +9,5 @@ in
   "monolith-nix-serve-privkey.age".publicKeys = [ main_ssh_public_key ];
   "ghost-nextcloud.age".publicKeys = [ main_ssh_public_key ];
   "ghost-writefreely.age".publicKeys = [ main_ssh_public_key ];
+  "ghost-renawiki.age".publicKeys = [ main_ssh_public_key ];
 }