From 2b4a9e1f90f3eb571844d43256bdf2cc07d80a06 Mon Sep 17 00:00:00 2001
From: Inex Code <inex.code@selfprivacy.org>
Date: Fri, 28 Mar 2025 17:19:36 +0300
Subject: [PATCH] refactor: Remove redundant subdomain form ocrerv

---
 sp-modules/ocserv/module.nix | 27 +--------------------------
 1 file changed, 1 insertion(+), 26 deletions(-)

diff --git a/sp-modules/ocserv/module.nix b/sp-modules/ocserv/module.nix
index a332a17..b45fdd7 100644
--- a/sp-modules/ocserv/module.nix
+++ b/sp-modules/ocserv/module.nix
@@ -16,18 +16,6 @@ in
         type = "enable";
       };
     };
-    subdomain = (lib.mkOption {
-      default = "vpn";
-      type = lib.types.strMatching "[A-Za-z0-9][A-Za-z0-9\-]{0,61}[A-Za-z0-9]";
-      description = "Subdomain";
-    }) // {
-      meta = {
-        widget = "subdomain";
-        type = "string";
-        regex = "[A-Za-z0-9][A-Za-z0-9\-]{0,61}[A-Za-z0-9]";
-        weight = 0;
-      };
-    };
   };
 
   config = lib.mkIf cfg.enable {
@@ -61,7 +49,7 @@ in
         idle-timeout=1200
         mobile-idle-timeout=2400
 
-        default-domain = ${cfg.subdomain}.${domain}
+        default-domain = ${domain}
 
         device = vpn0
 
@@ -75,19 +63,6 @@ in
         route = default
       '';
     };
-    services.nginx.virtualHosts."${cfg.subdomain}.${domain}" = {
-      useACMEHost = domain;
-      forceSSL = true;
-      extraConfig = ''
-        add_header Strict-Transport-Security $hsts_header;
-        #add_header Content-Security-Policy "script-src 'self'; object-src 'none'; base-uri 'none';" always;
-        add_header 'Referrer-Policy' 'origin-when-cross-origin';
-        add_header X-Frame-Options DENY;
-        add_header X-Content-Type-Options nosniff;
-        add_header X-XSS-Protection "1; mode=block";
-        proxy_cookie_path / "/; secure; HttpOnly; SameSite=strict";
-      '';
-    };
     systemd = {
       services = {
         ocserv = {