default.nix (590B)
1 {...}: { 2 services.vaultwarden = { 3 enable = true; 4 domain = "vault.tb148.net"; 5 # in order to avoid having ADMIN_TOKEN in the nix store it can be also set with the help of an environment file 6 # be aware that this file must be created by hand (or via secrets management like sops) 7 # environmentFile = "/home/admin/vaultwarden.env"; 8 config = { 9 # Refer to https://github.com/dani-garcia/vaultwarden/blob/main/.env.template 10 SIGNUPS_ALLOWED = false; 11 INVITATIONS_ALLOWED = false; 12 13 ROCKET_ADDRESS = "127.0.0.1"; 14 ROCKET_PORT = 8222; 15 ROCKET_LOG = "critical"; 16 }; 17 }; 18 }