2 files changed, 54 insertions, 11 deletions

diff --git a/nixos/hosts/tente/default.nix b/nixos/hosts/tente/default.nix
index 8904ba7..7ecb793 100644
--- a/nixos/hosts/tente/default.nix
+++ b/nixos/hosts/tente/default.nix
@@ -6,7 +6,7 @@
 { config, lib, pkgs, ... }:
 
 let
-  domain = "push-f.com";
+  baseDomain = "push-f.com";
   acmeEmail = "martin@push-f.com";
   sources = import ../../npins;
   helpers = import <top/helpers.nix> { inherit config; };
@@ -23,29 +23,52 @@ in
     ./headscale.nix
     ./matrix.nix
     ./monitoring.nix
+    "${sources.my-lex-surf}/service.nix"
     "${sources.my-osm-proposals}/service.nix"
     "${sources.my-geopos-link}/service.nix"
+    "${sources.my-rust-features}/service.nix"
     "${sources.my-spec-pub}/service.nix"
   ];
 
-  web-personal.domain = domain;
+  web-personal.domain = baseDomain;
   web-personal.matrixApiDomain = config.matrix.apiDomain;
-  git.webUiDomain = "git.${domain}";
-  headscale.domain = "tailscale.${domain}";
-  matrix.serverName = domain;
-  matrix.apiDomain = "matrix.${domain}";
+  git.webUiDomain = "git.${baseDomain}";
+  headscale.domain = "tailscale.${baseDomain}";
+  matrix.serverName = baseDomain;
+  matrix.apiDomain = "matrix.${baseDomain}";
+
+  users.users.www-generator = {
+    isSystemUser = true;
+    group = "www-generator";
+  };
+  users.groups.www-generator = {};
+
+  services.lex-surf =
+    let
+      domain = "lex.surf";
+    in
+    {
+      enable = true;
+      domain = domain;
+      enableACME = true;
+      fetchUser = "www-generator";
+      nginx = {
+        forceSSL = true;
+        extraConfig = helpers.mkNginxConfig domain;
+      };
+    };
 
   services.osm_proposals =
     let
-      subdomain = "osm-proposals.${domain}";
+      domain = "osm-proposals.${baseDomain}";
     in
     {
       enable = true;
-      virtualHost = subdomain;
+      virtualHost = domain;
       nginx = {
         enableACME = true;
         forceSSL = true;
-        extraConfig = helpers.mkNginxConfig subdomain;
+        extraConfig = helpers.mkNginxConfig domain;
       };
     };
 
@@ -63,6 +86,21 @@ in
       };
     };
 
+  services.rust-features =
+    let
+      domain = "rust-features.${baseDomain}";
+    in
+    {
+      enable = true;
+      user = "www-generator";
+      virtualHost = domain;
+      nginx = {
+        enableACME = true;
+        forceSSL = true;
+        extraConfig = helpers.mkNginxConfig domain;
+      };
+    };
+
   services.spec-pub =
     let
       domain = "spec.pub";
diff --git a/nixos/hosts/tente/monitoring.nix b/nixos/hosts/tente/monitoring.nix
index 7e92eed..eaddacb 100644
--- a/nixos/hosts/tente/monitoring.nix
+++ b/nixos/hosts/tente/monitoring.nix
@@ -180,8 +180,8 @@ in
           forward_to = [loki.write.default.receiver]
 
           stage.match {
-            // Select messages from systemd services that have LogExtraFields=log_format=logfmt.
-            selector = "{__journal_log_format=\"logfmt\"}"
+            // Select messages from systemd services that have LogExtraFields=LOG_FORMAT=logfmt.
+            selector = "{__journal_LOG_FORMAT=\"logfmt\"}"
             stage.logfmt {
               mapping = { time = "", level = "" }
             }
@@ -189,6 +189,11 @@ in
               source = "time"
               format = "RFC3339"
             }
+            stage.template {
+              // The slog package of the Go standard library prints levels as uppercase.
+              source = "level"
+              template = "{{ ToLower .Value }}"
+            }
             stage.structured_metadata {
               values = { level = "" }
             }