searx: use limiter
This commit is contained in:
parent
4b458e7cd8
commit
2f7429a2c8
SSH key fingerprint:
SHA256:o/geVWV4om1QhUSkKvDQeW/eAihwnjyXkqMwrVdbuts
1 changed files with 13 additions and 1 deletions
|
|
@ -5,7 +5,6 @@
|
||||||
}:
|
}:
|
||||||
let
|
let
|
||||||
cfg = config.my.searx;
|
cfg = config.my.searx;
|
||||||
sockPath = "/run/searx/searx.sock";
|
|
||||||
in
|
in
|
||||||
{
|
{
|
||||||
options.my.searx = {
|
options.my.searx = {
|
||||||
|
|
@ -25,6 +24,19 @@ in
|
||||||
server.secret_key = "@SEARX_SECRET_KEY@";
|
server.secret_key = "@SEARX_SECRET_KEY@";
|
||||||
};
|
};
|
||||||
environmentFile = config.sops.secrets."searx/env".path;
|
environmentFile = config.sops.secrets."searx/env".path;
|
||||||
|
redisCreateLocally = true; # required for limiter
|
||||||
|
limiterSettings = {
|
||||||
|
real_ip = {
|
||||||
|
x_for = 1;
|
||||||
|
ipv4_prefix = 32;
|
||||||
|
ipv6_prefix = 56;
|
||||||
|
};
|
||||||
|
botdetection.ip_lists.pass_ip = [
|
||||||
|
"100.121.152.86"
|
||||||
|
"100.66.32.54"
|
||||||
|
];
|
||||||
|
link_token = true;
|
||||||
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
services.caddy.virtualHosts."x.cy7.sh".extraConfig = ''
|
services.caddy.virtualHosts."x.cy7.sh".extraConfig = ''
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue