even more backups of things

hosts/lithium/services/calibre-web.nix

@@ -1,11 +1,13 @@
 { inputs, config, pkgs, lib, ... }:
 let
   homelabDomain = inputs.nixos-secrets.homelabDomain;
-  certDir = config.security.acme.certs."${homelabDomain}".directory;
+  #certDir = config.security.acme.certs."${homelabDomain}".directory;
   svcDomain = "books.${homelabDomain}";
   svcHttpPort = config.services.calibre-web.listen.port;
   web_data_dir = "calibre-web";
+  # TODO: I want the actual media stored in the tank.
   library_path = "/tank/media/library/books";
+  #library_path = "/var/lib/calibre-library";
 in
 {
   # TODO: This isn't the right place for this, but we need to guarantee that a
@@ -14,19 +16,25 @@ in
   users.groups.media = {};
 
   services.caddy.virtualHosts."${svcDomain}".extraConfig = ''
-    reverse_proxy :${toString svcHttpPort}
-    encode {
-      zstd
-      gzip
-      minimum_length 1024
-    }
+    reverse_proxy localhost:8883
   '';
 
+    # reverse_proxy :${toString svcHttpPort}
+  #   encode {
+  #     zstd
+  #     gzip
+  #     minimum_length 1024
+  #   }
+  # '';
+
+  # NOTE: Needs some manual setup in Web-UI and I ecountered issues connecting even with firewall enabled.
+  # The following command is what I used to forward the port:
+  # ssh -f -N -L localhost:8883:localhost:8883 jml@lithium
   services.calibre-web = {
     enable = true;
-    listen.port = 8083;
+    listen.port = 8883;
     # NOTE: Don't need to open calibre-web port, it's served by reverse_proxy
-    openFirewall = false;
+    openFirewall = true;  # TODO: Temporarily opened to allow configuration from inside my network.
 
     user = "calibre-web";
     group = "calibre-web";
@@ -38,6 +46,7 @@ in
     options = {
       enableBookUploading = true;
       enableBookConversion = true;
+      # NOTE: If I don't already have an extant calibreLibrary, I need to leave this null or the app won't launch.
       calibreLibrary = library_path;
     };
   };