diff options
| -rw-r--r-- | nixos/helpers.nix | 14 | ||||
| -rw-r--r-- | nixos/hosts/tente/matrix.nix | 10 |
2 files changed, 24 insertions, 0 deletions
diff --git a/nixos/helpers.nix b/nixos/helpers.nix index de00136..c6d1ff8 100644 --- a/nixos/helpers.nix +++ b/nixos/helpers.nix @@ -9,6 +9,20 @@ in error_log /var/log/nginx/${name}.error.log; ''; + # Returns the default nginx logrotate settings for a specific virtual host. + mkNginxAccessLogrotateSettings = name: { + ignoreduplicates = true; # ignore any following matches (otherwise we get a 'duplicate log entry' error) + priority = 100; # default is 1000, smaller values are inserted first + + files = [ "/var/log/nginx/${name}.access.log" ]; + frequency = "weekly"; + su = "${config.services.nginx.user} ${config.services.nginx.group}"; + rotate = 26; + compress = true; + delaycompress = true; + postrotate = "[ ! -f /var/run/nginx/nginx.pid ] || kill -USR1 `cat /var/run/nginx/nginx.pid`"; + }; + commonHttpConfig = '' map $request_uri $request_uri_path { "~^(?P<path>[^?]*)(\?.*)?$" $path; diff --git a/nixos/hosts/tente/matrix.nix b/nixos/hosts/tente/matrix.nix index 3dc5ad0..cf0f09a 100644 --- a/nixos/hosts/tente/matrix.nix +++ b/nixos/hosts/tente/matrix.nix @@ -60,6 +60,16 @@ in # Forward requests for e.g. SSO and password-resets. locations."/_synapse/client".proxyPass = "http://127.0.0.1:${toString cfg.port}"; }; + + # I don't really care about these nginx access logs. Synapse has its own + # log anyway and with the default log rotation (weekly and delaycompress=true) + # the access logs from last week took up ~800MB. + logrotate.settings.matrix-nginx-access-log = + (helpers.mkNginxAccessLogrotateSettings cfg.apiDomain) + // { + frequency = "daily"; + rotate = 14; + }; }; }; } |