From 0242700eea3cdb3abb4b5d5885e4ff614a8806c4 Mon Sep 17 00:00:00 2001
From: Andre <andre@8bitbuddhism.com>
Date: Sat, 2 Nov 2024 11:53:13 -0400
Subject: [PATCH] Services: finalize and enable webdav

---
 hosts/Hevana/default.nix    |   2 +-
 modules/secrets/default.nix | Bin 5006 -> 5040 bytes
 modules/services/webdav.nix |  27 +++++++++++++++++++++++++++
 3 files changed, 28 insertions(+), 1 deletion(-)

diff --git a/hosts/Hevana/default.nix b/hosts/Hevana/default.nix
index 81ed8cf..ce0f5f0 100644
--- a/hosts/Hevana/default.nix
+++ b/hosts/Hevana/default.nix
@@ -236,7 +236,7 @@ in
         };
       };
       webdav = {
-        enable = false;
+        enable = true;
         home = "${services-root}/webdav";
         url = config.secrets.services.webdav.url;
         users = config.secrets.services.webdav.users;
diff --git a/modules/secrets/default.nix b/modules/secrets/default.nix
index 0d47e9a1e34f4bbeb62ffedb3ca5a7b306997384..707a180a110803fd3f51c3e69cdcfbc13ae12806 100644
GIT binary patch
literal 5040
zcmV;h6Hn{_M@dveQdv+`0Ae)G|7=-X42Gkuos;V2NS>=}9IKM<oKED>YlOQu&ay4}
zST7N=59Z&i&p3<n3H;e51<~O;2_-#B2MRO>G20teRMQvAg^Ivf-*-B<n?XZDl;_k9
z<zV`i-6c3xG{!{CV$`&Bp5dF!&^9Qg&cAUc<zF+l{P8)jCyS*<8`B7BFLP0CeDhl8
z1~H?NMn1(rVjwR-GXu!?@zb2$sb_60CbKervgE=gVW2wfIHyk}@uZ=QcBUrYkT1ql
zy9<e&8~o&~3U_dGI@T{P{ecx)cURrF>v+WYN(n?9B!byxMx5M?`l~RI8s`nt{*y0v
zO^<;!qunZ>8mB|Ir5HA=a)VBoQ$Dv|xT<3*7>R-2#y2EAAMV#sh3Scm^k8-%GY?bY
zA<WKh3&sel87%2CmtWZgKyVO2_1GMDwlhvYnPIa8X&fB@Yc^1}ED0#SQ$(8Gzc|O6
zXWk1{-x68cAfIRINCq1B|HX?mXNFdewmxp@ti%#hnMX_04Yx+35Fag$%e06_Rm6*j
z0?uQHlX_<bc(Mw(6Ob1q6F>s4Uf4jJ(cFaUKm3kep%7{&kEk3wN*qDiXR%BB`+Md%
z9Nc|qx1LO9X8N)K;=x{GRV6LuRQ#+A6+fYbdyxiTdeLAvcpn9>tE|pA_1?bb_i&ac
zwi1h3TiIC^a5f7~tKoha?rr1BPHNm6ldt$&Toq$Fscxz(LroByjgLZ_MM)+q55`t}
z4gXz?l#fR+eSSf)MaFZtG5cqq$q@cLl@jjR`bW>!N__=B<VtdM@}g<XrX~1NpbB+}
z5hDJw*id=H$Dkj7Tv3W=Lv_Oua@N93_jZB$Vd35P8=?9r*gYyf3HdHldA3NQD_j&i
z`z;vXxryT)SksUmg#SBC<s1PtMUqk&Q#1&we%IqEgc5n3;H%C>sHrC%Q|OQbOzWm^
zQH{a}Ah3#JCfG`80xkDk8us0NgifVG#QtnAm>Nf>J0HAh^GTPYI?#_ZL;kr!mJCdB
zVqJSRw}d>&ykhTeV-t|dWB)370C~t$y@DZdP5ulhZUOQj7^UeGP+9rPBLYrT7=qgq
z8((-*)$rJr9nHJCz;vg(gpcD^ZXX!e^3^E5W#5y#t#=~s@{fY4puaSE<dLYO1I%3e
z#g<go!*F^`rfJMt>&(sEO^5yeg$%$zVf9NV19FZV`HRjO{d~^pe6UMo>61sQxr#iK
z7k&G9;-8+sudbq3v5&#tq9ShHa*TIpkkK=G%&u|VS?>E9M6~1ga$vO!O|pxk9QNE;
zD8va*U(2;)5@vPxeMzDS)OmBZjf8H4p6M>`19rMmKJ?zhRkan(S}=V!b7n~cDW+78
zr4w0<uqV&$+(}F+BB}G6291;z2^PbuXr&lREBj()N=s&Df`iFs3ZlMXSYDe%8RqR>
z%%=81HmTeZ7~kq~VMgh^Md-UYuU;=WnQGdfdI^bLE?y~Yu~x-h9$#}r_57hrs4!kd
z(Kcc633=I2q;vXUaX29play1qz^@VfOnv8AC(~l9fH{$i{|)q_HcI(4p3|ipbB~Py
z7NV28fkW<fdMEdwc1pD%kvB>aLwl;e{*}>on?3kUe6bBRRrC+u(2jx|Q1Zy6LlSar
zV9X0>0I_aHo?n!3b|MJAG!9->(a#*pxed=;#0gLm+(23f!?dh)!$Ocb5z}a(dHn;A
z2L0Mtlml|0fo8n{e@nbWi)T4T1|)4^VC#QVa@%?wRV|}8+rvVuQq@&qxUiE89^C-u
zr`7GBxMch2Fy+4wH?4_Mr$l6gRy>OY(Qs3mqZp`zY+3k4l1H)xJMjNx*7CCnSqg`c
z>|nk2lB*f+_BycfYzGlaU#t1j<1ZHEMZKrRS2)smt;aGkfBUVvqZ6DvFNhUg(ogJh
zT>}XHWuWA*VDmOK(F`oIf2KdDm<NhH^tVG7LixybL?DSr7!}D9-=;{7_(v+z{m4eD
zc-lJ!Ghc#<y(|nGq|>I7Vd{G&a6crk*5gDwO56HUn2&JtXm}`hZiOq89CoPb(pXwC
z_>yFKk@z@GehipE=MJED*~W9+fDNO(h?hZD9V(RZB!Qj&;qWa}BAR6Fd~5h>zKwbw
zeG`b{?$-fpJrS0MYURb+hf!2GojEj5M|B3x+|6!4qH&6?maj6zJW8gp$Cro#4Dv>*
zc#41X|3>_%DSm>DLSQ^3ZfIdFKd+TBTT+dW0$spZIWx%AzKCrZue&+`F$_@1U{7xA
zw5?^Ugy+*T?*rjPq++MP`9|7XMZ;L;Qc+d6wGxObNc{;0hl^Ph*nfwu(xPIoP1*O2
z1MWS*>J{YFmclmkjvRT2dj&>|2-Ro&C{?gWCP)PTNu7vfY4mxSP|NAytPK~Ryd6Pu
zNt;mhK<VJCB31udcSj;lgMSn(O>aCT01acC-pJ>>>eGURPyQiQ50ZEx&TVIv%_@r7
z5y_ag+kWNI6fdc(0B}u${fEG}B%*Wt7l@w>%X*L{Iaoq<jcZ04hF?r2-LNxR2yGAs
z?`eDpr2fOw-t`pj6<d&}p^|X$r5e<ih6=FiKx+tmz;D5XBph;ZMxxtS*_}AKT!}sQ
zfEt|LEL;&E5%RGkQl^SA$Lq+#Vf$Ppi)eWogZ3_*;q3W|P7O$F+&cc56y~OO5L|L~
zpu^IDwIKEJK+Rv_&@M&b%2*r8PQM)c4bj=BCpqJOSW{RSl%VKK?5FuE49G}wmg;EN
z2j++B1T~qEWu6pxMmVUDOoC;a?%ZprFW_pzs(}TJDk{G^>y8~HRgI^R8>A!8OTr`H
z9E(JwwG8kYXsX1*ya1jBY~fgeB6y(Sacp!61>^9@9%A)mg9bVr>>f)%n)QE|B8HIJ
z4D(AKxM?)Yy%BQJ1SSd5AZQEGIIP|PKJjLjr5(M*7j*oNq&IU+eF9TW<O3jw9;!4$
z<diK~rwK?b9Y?}jjuAR`7`zXFCRwxhV#$-M_Z!?hAJn(5eOYyy14Itx<p-OR_THw_
zr}aP1e0jkwSQw+o5`iV#S>}uux!cTYjfX)blSZZRkIiCkYgPUWh%wkdp_U=eSL!+)
z(%_s~_^lvE=uK31NYRx_d60DW<qBD(zi&sQ54eE%wr&kCK{Cyd;#o(p^HTt1XIjYb
zT<YMTzECrz(6#m}=SHr{)JyDtD2n);0EPL1WWL82;GCZtO=a@uG3*O4V$0N@6>?Nc
zS%4|oPrRD;*mLxX38?~@M3Eq!b@+19wgVvLzL71tRdwrlSSAIQElZy#P(TV<)C@Ne
zm;AH_xZ)L4!@DAdZbM}I=`32O#T0O)61V@|N))ktP#9!L80<67qmr*-4>$(>1Dt`~
zX9q%V->Dk28Z1OZ?G|G52$0)>D(jzEllMrSt9<}WR8i`~+=czKIYao}LBiYqo{Qa$
zD1Qcz=Ib+excpkHu#wKasJ+ijCY6hWP$-uQu>1P^=}QB~y4!nWp-Zoh1vXkC6ab7-
zN~#&S%sZo0Eebgjt*>&G%G>lj);hHANh8*+4pK*CM>em7<2ehKS#@dowy^bkz(6*a
zV!FBv0I!ImTWcQ*gNFZAaW!v;@vB9N{uc2<@vh$cG9Mg5$R61(bx=!V4fAIm%GRQv
z&Bzi@vSi`e-{;3hW9~vB-3~$XooEfD--9-ruBj6#->sno4+&EQSr*WVvqkxr?RqIc
zxgx{`-{?PMXh0-C+r*B{LU)jbnbZ^tZ2quj(d|@0CZ{3uPuw;o4v1_~L8NIkeNz}Q
zddiWXTBDmcdJ%xM4N*^$DSv~#$w90TxE|{9J5P=1Nl%m(Iklf8#{RjwmO~JP11iWw
zSId_W(d)72Hzg5Y_H}!*I>bF^JZjWXTEQ#uD*G3cel2l`5`pF32@E70_2<0oo5N}E
z!wiZp+ocv6+%@(rB3^~ssrc<c6wD-9mRD(O<~~rDJ+G@?1>qCJ9R^h*Bu5`bSM8mm
zq@|ft`UT_~qq2}Uu+4MHF`*?<T!k$7RiAZ@!6e>{vm<l1l<jH!hc=F-xto6G?*$<z
z$MWk#IDKJquOc9Bcs3@0GpAfnx=lRce5SDA<{2EfxLf|AaOZa^J(7`gMWn`~Y{AGv
znnoMFU>*#OWzDhFeWllN*yAKL+yD*VXG_r6*eTg(fkY1_;D6c-V|!%+`c0CjuNYx%
zxic~Dyw1V?(M6E<HD4C02qoDd*w$X=tHd;*A0gj5CK0*p4a3Bx<)OR@02-Mv4a)~=
zsTX=UC09P@3|nx)O4LNn#gUF>Oc5(x|CQZq)OM#aPb0bay7(8PMt_Dq28OzD;0Q7F
zgAqa=swd#kz+1^IP1hV|_5-EoAu|AJx2`AFfE)ZY9jJh3DBAO_+{O09Q`FJyk^YJi
zI}IULY3gfkUw;ZIuuJ(x;P7UHP*<35Ik(c8ewZ(hzJ%t24taCZA!iN_1&DYcu<Dwt
zs!%VkSw9s(LdBogtj^8c0vQnacQ#6Is_<9b&dUGK2@_T&i(uo*!_32O4uSwhuGtIr
z-T7P$Xoh`5RmFiS@$W0VMeo)|@g`eLj9}y0zv_mkW5hlg24+uzhr>WdX;afTA^MC7
zG@*O`PFu#aR-i<X7zTX6#A)foGqTkWu>VV})Ajd-o1o>+URn}w7zY*s<4Js@Cnc?S
z7hFZk&>$=o&eidx9*HVyv1KJhWZ=(3RY${CvaxAQt_~?{-fl(vd1e<wjrn;!!EBlD
z9=bG(LJsf7E+PP@*I7CM#k)_1$<#8AdhWZ)vWEk62vT3ej#U{wxTQ3P(j?w^_3K`>
zxE6zl>Y}}*IZ?M%F2lC5VEl2@)gshGBWS?IoG<AqjS3&~L1>b1$`*8hn7>70#Wtdl
zYjusIs^FQx=Wp{dysG*(1G*a>d{nI}VJ&M512w9}99t$?f`{s9Xf+gX^PE~d07>My
zq8_@2cPZm<2y&#?)ecjPw4*@g4ek|2Yj0Jy)WbE+-3ppNePnt4G7b=g3h&%UH<{!m
zf<zC;4Dpm3PvwahOjJS0jW7Rni*fRPyPhxQ<j=+wNr#4sJ}hY%A=ROY1lz7)mdT{E
zZDQDO4|_x)#jnB$jk@N4{KfO`ui>^NXR(JeF7^v1m6eA5uPknjhBAYwrPcSe)OJ(i
z$F{A=ky#q0vE=$mSlQM~YZ3$<l<-=ygS~f&YQpkE`Y<IrZo%Cy1<Q>)VvvtK7L@;S
z7%KgkZCqvXa(R24=w@R*$FUex3RaedJ@(8gy+iJ)yc37$?osock~e%+cedrvNdXMV
zhH_sQnthC~h-O!OS@&c{sx>IpTTOy3U%v*tdK?Q?+T|z^|Co}d*S-M&(f@Xjc2f7~
zQRHkm-{U%{v$bJfNK3yGW|Zo&g(KL81=*eHfJKLW%+&*$Go^;qH!4wHbrP=@-0H1=
z70eIiI8%K1DQgg}z6|(4bQlwcfGgbgpAVAxKS+QsREy5GIJta(`jBwf|E1-Cw0NV^
zT0ypXcy_}dL?42~O!YwB)rQ1+mlVMx7kb7v7yX~0!*Lt%j557SWC%go8>CA^$Q3`h
zB<AlNG>UV2C0b)hz`FNl7tbXXP)LM1f76tS!UzGS;cqhMk4YrdCFB?g`j#bAG9#%z
z3Oj}4ep)bsQ5IXt&n%*vTR=U;PKF_*#t+=e?m(Azpo>iO!5x*52hK6iUx7--?%cuh
z0dqXmjU-v#i;M6pkruHqC*4m-Jc6De2i$U`RQtseMwT6lE%%^Esx_FtqLGB1S^<2K
z!`o~>-%LM2#9Xq>2k!J*$c9bhm~!DZQ*_Cag1|0=mQ<bsc}LjMW(?g)L2Ixm)Fx)t
zeOAr9f9!<d3AYLZnI0m7O9*_5lx;5Gb^LF*OR%nvQc1q`C%b&s_!m+>gfrdnh%TF!
z%K|HY^i};jM=}A3HG!d)Q>~axExfLE5_~ns)J8nwM(_T5j@PQqAiO^NamHLRG)+b^
zbRuaDu?{Yn)5F`em(!Kk)n(kl?2)#9=HW<XRaCk9O9raQZll||SU_%qHq)O7nIjk|
z32^3Sm^cb_v3^xnM~im&jyVE-Uw>9)Q|$_#D5Xd9-f6+>x$K~?RGm$oh@>D>bEO)2
zi(A+;b41`wi0Wn(uS>N_ygX6P4FrB}C^+~0x;sdWKdj?vG!PCy(oEokLYk?Y?h(xc
zBU)J1T-3f73uGkUD$9foIBZfv@?A%*K)*e*1Zy}lMe%>i*2q2}&NSw+#ccL)U4eBP
zmLFvQ-2qaR1y)VJ(|2vlSuP<nCT$=#Hnlo+r#E%lrML%WG9GbaClm?8Us8a>jxUh5
zR&mG~l%`*+?6xR4ewJ0Q2S#(-e7wh~rD9VsaViw`tIe~HCQoJ<!`#{!RUkqRsY;v4
z{b845E*r_h!QRdy46?D+e!%r!^*P@IC~Bi~w3Cl6@H)K>#0_XV<el8k4fAQo0d?O%
zb1p08Lqme#7P5zDPBuBd%Mw_i0a&elRJ)9GJG7<r=hDX($WWGwK@Ha)mQ;QU9eJpn
z(3DiuG##73;X6{9z4&WCH}=7}A!t;6FF?@;pwZ7cTR$^{o(gIK5X*@v9ws)IA8U2N
zJ@^+Pd#jSln6#=*N?;hjiUgJ$d*s`00!1a!Z@C~f=B|nYRUIkWqf=+6`j}5T<&!tl
GiX`mcfu7a?

literal 5006
zcmV;96LIVSM@dveQdv+`06puP@Qu;}l}O#aW^USyyECt_7*Z)H)n&)FXgWOdryXU^
zx&y-W7RWgzkbtXr`isfHkfQPiP+5&gU6Gxvc`trJ<Rj}F$9{lS`-Ve%XlNjCQH5E5
zr?iLqOD@iVG`N?63N<NLLArip<tdEU3Fi_zxbNZ~#Y~ATGM;PDAZ+fxLP)qWxeMxp
z709}ojLN}ISks4yDK5O*Hb5^$%szE=RZBAXg2$_&%OVhMZDRrG<Y&z!U0e_;*LnEA
z_pkLFlGo+yRiPCJe$^`yVjd1g=x4!S-CE*wUU8Br2wpV~!fWGz+9Q#zLte9FJzp{j
zxzO}qlDDcehe*z>L6on}P>=0_4@l;FZN?cRnAwrKcG6HIMNQ>-{^XH*=N=BQQMD;n
z@cHPDBr&7=9*f$Tq7pIHe6*F_8;?CECWOdUvq5jT$%WSEXHhoYD<vCOw%Z0tm5y~K
zalPptDvDpW)+<u(wwII!$5BZX>x9e=CO|5MqD?~an>P^~o@_Ad#bYd>ccrTOK3gg=
z-)8K>;4(V7Hm5Q6N&|N`Jb25+Pf#9y-36ngv4X2oQ8k~|qn=x@DVu6}`Qba}{xyB@
z`kaV5H#N9zWTib5!Iwl7O3kYa6TqXs`8-A67CIW#Nl8>D(d)rZo79CKTsTETl~+<&
zWQW`}M5-3uD&U_MmmkW<D2f_ioKRbhOdlS2)%2*j^h^uN)2S9ojh-HJOi0Dw+T_9r
zlB{h}M!{t>!0k<HsXYQ+w%Vgr$4Ej{<gIKsk*GxQi%c@u-!JDSH3I362u28T$Mqi|
z<fZ4)DAy+TQzDH(U)6ycHCoIZ0UhGPF^&6Dp}k%0GWv74SU5(r0M;Po{xor^of7b3
z2w1)EqIot=0Z-&3MsDy*@M&GtF;<%sgSGF0Jzo_|Z~({5i->0u-J0>|?fGagYxu&3
z;6YTNwkI_MC<>;Y#^<dZzbm>qmx8Z9Z{lX+WsG@KAR5%6CFEqj9j`4qdMjR+IWxkJ
z0B-OXWk2+(=Bn(d9jkhlGOF;yG8xPdo7Mk&jxW+D0%V7s#KBiscbn%#&I%4?7C3he
zIi{ujBb&Q@wcrsJ)2Q7oW#K7oFLtbtDPT?SFC3?_;%LVw$={?c5Y)D+owMMr>jIY)
zhQ0`9#hB)B#{p9!049lbo)1RxEgZHL?inDVnYQ;Y*E*_xg6bUc5;;-80!L^fWk>0<
z%N#ZXh`sZv<Mk-jQ0_XU9apWlMX4e1+eLn_XP<WT-P<|YRrZQB!uY#e9E)G7Y(SZV
zlMT;#+j*?%F|NuI2#`GgdRN}+q`-CUf+4LnJ4#@NEsOTRf&<l+;@QGbP#vC_{i0$p
z7S$If9uo1zV3KsBZ9wHnUFpQg!=*+rEEIme!vIznr_ZVfOn`<wLU$8kkeGF=O?|tV
zXi96!A6W|w8#}-}+wXO6VE%A7*`d93V6!{j&Ize_rt-ju-WsL%jPG7)0WG7c+@I@3
zeCQc>nzYQZ-Jbn&dq*0IKib*rSh7IFFtwOo)yZe}cU?;%sBoymrk@*0kH3!p6?Hy-
z)C#?{YT>#R15;_HOeeT;;vZOHa!r~rUm5{?V9O+JFubJ(r1cXt!LQw9?nO3%W$}*7
zjy)IXfHFaKOrY4|krLOJ13(Zicco-ZOGqOTw!(ym7@D9P;d%CiSm$U`_+!_KA=@F`
z$*%e8EaJ2L`i?Pw8emB(k6}M)5e;%eFyU75b&<o6beMmvpe7<Z178y^jC4F;L@NY#
z;?ScLh;T{7cq~WnQgie_HrmobFAC=cj#VV?Hqm?(+FiF}6;9)!KvvR0oY%vz``73>
znN<?5CmNSHEuHP*W2^z4;#!jG{D4wKcqAg9tutIr&t8BrFOz3U0M;UcYiX<c=oLx7
zsyyF;*!B>}TCsUIoZi8UK-{dG&UBD{j<>qdr@909%Jse?<sl<{BpnlSE-pAI$CNjh
z3$&+G1;^&aZZki_OPi}qAXQ|S4c%suOK4^L0=$FW_+@7v>4{0u^rU$XBY&Q+y|^_3
zryOuy?7pov|LE2rhViE0rpn^%ejc4R%}#J!(O<r$d*~%!2-EP}*5+nUzd{$cKVn%h
zD$8+z|NnVMOL*v<&BuAE9q(2^H$q7PTT*ax_ufpx=07U6>hW+bGhs9T477vpH<bxA
zr8saAP?Ts7&l!9#3UV~mWjDQF(XK}oxHI2J(u8u&18YY!*@-X5H_^;qP>@KjS<4XO
zKR}IU>{#Oe<zWBw(B&$DM>|+fMkw@VWb&@EcKUdkjX;53%s<?P6SxCVI4wKq0ezME
zF^@qTY6}SrEFqgvYI2JG00-&s9I=Yj67dA?WMeB43;0|Ciq2pJXNLGmHx<z_+RV>S
zI!SC3Jkqob8&K7<V0#bxDe-wMI7FglmACH-tq|$VfukXG^4_efOi%%ZhF+E<xL9^G
zu*u|BI$L%~2?T>QHlba+dy`Ac6RZ8jNJ6h{tVY$Rz3*WNR=RKjh<kjP;R0BXb<aBO
zQgU7;teO^BIaND}t!p!B_@|U^WkVKy(C2wZbe}o>jNeDbA0AisvPenlRd+T|4%6B(
z2~F?G?Z+cUApvLjb>qFuW}rfS^;3=%CHM*gb`&PMrOwz~n9WX|QxXol<GKY%p(i0w
zES_!4G<EIpmb`72?n*7!Z~{5n$&$-|R#agRlaLJ4POgGHDpcLx+;phopa46JLEzDe
z&>rrRRBpFUfZEXms0*ncus>-|L~ZUQ<4s)$P2%wCZ)ealijf`*F1UTr?8oRw&TK7H
zQ3afBnkV(OGB3tU|FsIQ{N@#{r;~vm;YfD!MZ4;sPk#$xV(a;A9=WEjgm#y>5_$C-
zE|eR~bg&5?N~#x}mR^69EFI>Pt=DKh3y*I%p7XcccJO2QpRlfjw{{5Y93L~@+b@AP
zs(IT6x=0JQD(^z{fJPF2yddg>(T8V!?dVgWU`nFi8&y+U+KU}24KqVxB8O@8N7A0i
z0~%I?WKTLHMC5|0{ax2!5~;(TbeM$CiKsz%`iJM+fzL?bgS$XOc@$cqB)ZMU9edo<
zfg|%=a!AS|ajITny6J?NT7HkeEOy0cHjwal(=#b#+i&RZ*S}(}Y=I`^7=8+WBQb1@
zUhA#@ei|VE3`Hq8L{qvtBd%uF-(Bf2SIXS$hens@((tccSrkG4?d!83?(oivr)Xh{
zVt`xrM6>GK!x}IkXt06Gbsln{=SLH2tu;?U?#S-uE16&fkh3h~p{8<u3zxqHcBfHm
zVQDC8ntR+6r8&^JN+yR^+Q)VY?~+&;t21`rRjs+jV1<I3NCf2ej-_U7m*vVu%H|b@
zo}a;YAO4j!>}8SnQJRB>_Rl>jzV9}f)PGn;!sZ}yOM(vnPEt}sy6CeVCVeV&2YhIC
zk&0=I$nDj%X{T!TV2QxF#WaD9`VULkHZnQ<x)K4f6554odQ%N9PpssA{;WLY_FHYi
zJ=OBWqp|vdphF@!=hDawMWf;ANTO$ISQa*MU?I^FaLPHnNg_tXRo!BDR@w@!{<pa%
zsQts&>P6$iHGxNJov3yHC^3!>O$;b+enXCAC4L+vJ|=TPDP5C{^B^Ih^`JB~1vg{o
zns8vcSI$%9_70yzjWp*Vll2)e6)arUS&6>63mQhf?F(AU1iV=BtyxakQV(h#b~{k~
z?NjG(0<0WQo#z2n?y9mG$;yKUVUxc(e*z)P0&=gU{-pAvV#oGJHJs>_k(q|TbW*Sa
z6V~=qQS`C2<)*yuqlv!zG>(AtpNThn3v9YEDfHxo*3^=PS71xv<VcZ3yGc9WaNN_(
zMv@B;qCZS&C`kNNS&sj}*7BSLGoT=J{w4d$41TsHK_U<M8-ds>!6zp&7L`sKs({zZ
z1<S(<f=%zFv^P|$4Fz6i_l=#2^R^O$#z<HVK3UT>!-$BsE)$VmhAq!iCEPUaijZDr
z1b$9=&=|aoR`-bq<94xr%u$boA)k!v>oO7Pl=C|w{#S<AFC;v0V%$*$PwDNljNT0w
zJ)4WO3cax_(H@&ZFUByoOC_kkQAbE5>8M6<Y9v8|iW^eqovzUAnE<d(*isG%Gnfa`
zfjA@@zXM)wH6__L{%9?G+}<|mym;6nw$Rq_*9@iC6Aw@O=@EpP<{5u2vhJ99HPi1G
z5Lb&a`ON`@S6MTFFR;!e80iN_e9?-hYKwPFZJlA%xlS3Yc}#Q^530Ik=6C0<3Z8I2
z2}fnn3g}vW56R*Vu>I(Ot8{WJw=J9NAQve3=$wQ?uW^&}I(~=i6laK7F&a0_t&@qp
z4mEthrRB`(H{~GE5bB1D5amJwI$VJ($=sQRuJigLT`2Nmrkj_PNLp7{$OCM-Itk6?
z6$A7m4yjSexsi6@ueE2BVn}8Z5`Hh=`D<M#9hdLw(8<C9cxDl30WbkZ4hV;47O<v6
z{&uC>$WX=&#aO^((=10k;buFkOg{7hwg6I%oL(T&fc9ylKQFf{?<h`m%nz||(igii
zu;Q!T2WznE=~ef-IfnJRH&YOQN%t6PqEDw>+GIeQM+mCm50%g~V~wdLw|}c&CDNS_
zqiUHiCz-y<BJYEj!4>f{Y(v)Bp9k9jg;Xgm!<_o|lq1-e#TEz2x(2rNNz^Pz>YK;0
zH@dO}hA9zP7x-qA1xcRRk#@(yI<`UcuS;S9`P7!>{msTV2kZ#Vt*HJr3AJ3=y@Cfo
z$aFtZ^cLPKzw&u1yih|komHSc0{Xf0tstB}DCl4T4EEjows7AkCH}~8ujTja#QrOB
z|0GHmW4#(&gDQ$R?Y&Bm<js8{Un8&d(g_(KQHg~l@7k1vU(oQn<gioGh20+QYmWia
z*Zb#lPXD+%eTEjQ4s_D33tI?bc20a?hv@(x`C2(XI!;^D$%fgstZrskxWB71mM7-i
z8UW0}FdPerT~IzfVyQjSwTuj&4&26DRRda@ex8+qqngXOC0WLngBL?k#ZBRm5^Z=i
zQ1uokJ3?F(l%VGJQ8qkmC=NLHQ;iO-Sq`ESe)O$*t`)9!0Z6XKiowl)(h28B%jb0X
zH))#P+r|MNdkZ~YsxzAY-!3Vvj=hQHn*~F-d|rW6I_r<n&3a)^nylg?Gfe<q9GR0J
zg159~ui27h*zocs;WHojT|;MgqD{ZnRk3<N44gzGu7So%4H;2`$j$QZ3@Leo49H-P
zAxwb8x3H9Yq5UeVL+TV*@SPE%yH=f@ATU~b>1y)7F8PrBUP7Gq%jQhiYv&xPw)nG1
zBxC!*4>PHbN_U5b%dph3aY|?h3sAN;``Z(1abBc;X9&t^Wy7-iPLsg8?qXz*{Tv60
zGrX~s!{fhphrYdfvcyAm)Ii8qZ$Z4!SHtyUY+__VkQ(L;J`>*5U#qEftB17HdJFjm
z?!-R_1EF-(_1R~5;TVkm2~IDLQxY8+si7eW;@JNNm;RSw_DjFWG;Wi$i#y(SGDf<O
z4Pi2%k!BlXT;i^34q3Y>h<n5oyj;u6#uv0NCXA&RacUv9Z+Uh*ekAcwN7)%pAF+v3
z>-_@!Ix*hw7+38f0<PowYkSjv3$22YtOeR~ZWNyl8T5RS0|EDSSm@<sU2?_fh&bl8
zQ$&x?0Xb#HM<O3T1xM|cqpjc?R9{vuYHmFh)Hrzb`uzb`UsCDXwiJx%K#{AssEBng
zJ%jLpGnClzx{O($N8G0Wn+xvDcxwgCOL}Z83G5%$iq<OZjlw-K^d*4I;*0x5#7=bq
znGR)vtSg$LH&=tfZKK0sJh(tryI(}@6jdGs|5WMzGYI_gAVGvd#wBu#+gC%_Bsd;+
zmXY74*-vH}4W}3CNG2(1)vN?TaShTtNd}b##mj>f|Mm95$`K6shTTL?OBy<+$>P=D
z0;Q@s)V-h#!K2t2q-$A)VS0|~Sr|Vd+fT$MKjp7yq9%nDr`>M#KI0^vm^0KR53Hie
zPXJ8oQHr~79=$?Xvt!rzMe%MD0N?|wl5(&u0(}tixEg_JQAL6w#HQ|GXHZ$gLb)wc
zwju=G!d)&a2kaiZ5$jqsEPcr<%BC>V!=%~(MQN;XF0cymcX97@pC|UWlaVX?*xpLe
zv#1Z{4nlns$}RKU#@gRpL&0Wu?1YryF^>ZnJQvm~Ra2YRY4J3Gd~1;&iX}0;(a4Bo
z*{v&pL4QKmX6kWJisgk3#!fya0c|H^xBu5Z9?Ivrv5uT?F=5-<4fjq&3*3WGuJ~~_
z(__6tL7AdI*g}zJr?V3YGPD^|jpFM0xpIHxI@2RmOyrLe=g0pl(-^qw_<<St8tU^A
zcGJ~QSd*wct<StM5xt^kWYdAAX#Rp2uQQS)hXKoml6}TeXNJ)!RH;_xrP*79JLd|g
z@I>%NP`=r@T+)a810hc?ST4*N|FOLx5)9CW#>RTmE%H_E(JFWifR_htN>HC1kdFIR
zh>~~Aytyw~6(G0zHCzG2(&XFGLRo(>nGFUG-pmthje@y;!NS9y36VJdbk>6=L)RFM
z9sX4nObTQ>zoz#&Jh&m^^1|iBkIaDl2hq!2pWHuC45_snqUXO4mza=(MAqv`Jx9H%
Yp1+C;YBzYQZIuQM!5)R21Ggk$o-P@vYXATM

diff --git a/modules/services/webdav.nix b/modules/services/webdav.nix
index 2e6dde1..3b7d102 100644
--- a/modules/services/webdav.nix
+++ b/modules/services/webdav.nix
@@ -43,6 +43,7 @@ in
           port = port;
           scope = cfg.home;
           users = cfg.users;
+          behindProxy = true;
         };
       };
 
@@ -60,6 +61,32 @@ in
       };
     };
 
+    environment.etc = lib.mkIf config.services.fail2ban.enable {
+      "fail2ban/filter.d/webdav.conf".text = ''
+        [INCLUDES]
+        before = common.conf
+
+        [Definition]
+        # Failregex to match "invalid password" and extract remote_address only
+        failregex = ^.*invalid password\s*\{.*"remote_address":\s*"<HOST>"\s*\}
+
+        # Failregex to match "invalid username" and extract remote_address only (if applicable)
+        failregex += ^.*invalid username\s*\{.*"remote_address":\s*"<HOST>"\s*\}
+
+        ignoreregex =
+      '';
+
+      "fail2ban/jail.d/webdav.conf".text = ''
+        [webdav]
+        enabled = true
+        port = ${builtins.toString port}
+        filter = webdav
+        logpath = /var/log/webdav/fail2ban.log
+        banaction = iptables-allports
+        ignoreself = false
+      '';
+    };
+
     systemd.services = {
       webdav.unitConfig.RequiresMountsFor = cfg.home;
       nginx.wants = [ config.systemd.services.webdav.name ];