nixos/middleman: Add hack for working Gitea Docker image pull

nixos/middleman: Fix HedgeDoc websockets
2024-01-09 18:50:11 +00:00 · 2024-01-09 17:35:34 +00:00
1 changed files with 21 additions and 2 deletions
--- a/nixos/boxes/colony/vms/shill/containers/middleman/vhosts.nix
+++ b/nixos/boxes/colony/vms/shill/containers/middleman/vhosts.nix
@ -377,7 +377,11 @@ in
      };

      "md.${pubDomain}" = {
-        locations."/".proxyPass = "http://object-ctr.${domain}:3000";
+        locations."/" = {
+          proxyPass = "http://object-ctr.${domain}:3000";
+          proxyWebsockets = true;
+          extraConfig = proxyHeaders;
+        };
        useACMEHost = pubDomain;
      };
    };
@ -415,7 +419,22 @@ in
      "s3.${pubDomain}" = {
        serverAliases = [ "*.s3.${pubDomain}" ];
        inherit extraConfig;
-        locations."/".proxyPass = s3Upstream;
+        locations = {
+          "/".proxyPass = s3Upstream;
+          "/gitea/packages/" = {
+            proxyPass = s3Upstream;
+            # HACK: Docker images need the MIME type to be correct for the manifest but Gitea
+            # doesn't tell S3... By hiding the header we can use add_header to set Content-Type
+            # (normally can't be set directly)
+            extraConfig = ''
+              proxy_hide_header Content-Type;
+              add_header Content-Type $upstream_http_content_type always;
+              if ($args ~ "response-content-disposition=.+filename%3D%22manifest\.json%22") {
+                add_header Content-Type "application/vnd.docker.distribution.manifest.v2+json";
+              }
+            '';
+          };
+        };
        useACMEHost = pubDomain;
      };
Author	SHA1	Message	Date
Jack O'Sullivan	aad8adf5da	nixos/middleman: Add hack for working Gitea Docker image pull All checks were successful CI / Check, build and cache Nix flake (push) Successful in 26m52s Details	2024-01-09 18:50:11 +00:00
Jack O'Sullivan	205a948486	nixos/middleman: Fix HedgeDoc websockets	2024-01-09 17:35:34 +00:00