From 41fbb8db131f022a90541e987c33244fab3502ff Mon Sep 17 00:00:00 2001
From: ediblerope <fredrik@nordhammer.it>
Date: Tue, 20 Jan 2026 21:35:57 +0000
Subject: [PATCH] Update webservices.nix

---
 services/webservices.nix | 31 +++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)

diff --git a/services/webservices.nix b/services/webservices.nix
index b6b3149..e784c77 100644
--- a/services/webservices.nix
+++ b/services/webservices.nix
@@ -2,9 +2,40 @@
 {
 	config = lib.mkIf (config.networking.hostName == "FredOS-Mediaserver") {
 
+	# Nginx Proxy Manager
+	virtualisation.oci-containers = {
+      backend = "docker";
+      
+      containers."nginx-proxy-manager" = {
+        image = "jc21/nginx-proxy-manager:latest";
+        ports = [ 
+          "80:80"
+          "81:81"
+          "443:443"
+        ];
+        volumes = [
+          "/var/lib/nginx-proxy-manager/data:/data"
+          "/var/lib/nginx-proxy-manager/letsencrypt:/etc/letsencrypt"
+        ];
+        extraOptions = [
+          "--restart=unless-stopped"
+        ];
+      };
+    };
+    
+    # Create directories
+    systemd.tmpfiles.rules = [
+      "d /var/lib/nginx-proxy-manager/data 0755 root root -"
+      "d /var/lib/nginx-proxy-manager/letsencrypt 0755 root root -"
+    ];
+    
+    # Open firewall
+    networking.firewall.allowedTCPPorts = [ 80 81 443 ];
+
 	# Jellyfin
     services.jellyfin = {
       enable = true;
       openFirewall = true;
     };
+
 }