xeals/nur-packages
1
0
Fork 0
Code Issues Pull Requests Actions Wiki Activity

Compare commits

base: xeals:update_flake_lock_action
Branches Tags
xeals:main xeals:update_flake_lock_action xeals:gitea-actions xeals:jetbrains
...
compare: xeals:14be017c64e8dab2e5f185c9517632a0a18e17d6
Branches Tags
xeals:update_flake_lock_action xeals:main xeals:gitea-actions xeals:jetbrains

2 Commits
update_fla ... 14be017c64

Author SHA1 Message Date
xeals
14be017c64 modules/betanin: support settings 2023-09-27 15:00:25 +10:00
xeals
2c1b5ceb00 modules/betanin: init 2023-09-27 15:00:18 +10:00
2 changed files with 244 additions and 0 deletions
Expand all files Collapse all files

1
modules/default.nix
View File

@@ -2,6 +2,7 @@
amdgpu-common = ./services/hardware/amdgpu-common.nix; amdgpu-common = ./services/hardware/amdgpu-common.nix;
amdgpu-fan = ./services/hardware/amdgpu-fan.nix; amdgpu-fan = ./services/hardware/amdgpu-fan.nix;
amdgpu-pwm = ./services/hardware/amdgpu-pwm.nix; amdgpu-pwm = ./services/hardware/amdgpu-pwm.nix;
betanin = ./services/web-apps/betanin.nix;
dunst = ./services/x11/dunst.nix; dunst = ./services/x11/dunst.nix;
radeon-profile-daemon = ./services/hardware/radeon-profile-daemon.nix; radeon-profile-daemon = ./services/hardware/radeon-profile-daemon.nix;
} }

243
modules/services/web-apps/betanin.nix Normal file
View File

@@ -0,0 +1,243 @@
{ config, lib, pkgs, ... }:
let
inherit (lib) mkIf mkOption optionalAttrs types;
cfg = config.services.betanin;
defaultUser = "betanin";
defaultGroup = "betanin";
finalSettings =
let
base = lib.filterAttrsRecursive (n: _: lib.hasSuffix "_file" n) cfg.settings;
clean = {
frontend.password = cfg.settings.frontend.password or "@password@";
clients.api_key = cfg.settings.clients.api_key or "@api_key@";
};
in
lib.recursiveUpdate base clean;
settingsFormat = pkgs.formats.toml { };
settingsFile = settingsFormat.generate "betanin.toml" finalSettings;
beetsFormat = pkgs.formats.yaml { };
beetsFile =
if (cfg.beetsFile != null)
then cfg.beetsFile
else beetsFormat.generate "betanin-beets.yaml" cfg.beetsConfig;
in
{
options = {
services.betanin = {
enable = lib.mkEnableOption "betanin";
package = mkOption {
description = "Package containing betanin program.";
type = types.package;
default = pkgs.betanin or (import ../../.. { inherit pkgs; }).betanin;
};
openFirewall = mkOption {
description = "Open ports in the firewall for the server.";
type = types.bool;
default = false;
};
port = mkOption {
description = "Port to access betanin on.";
type = types.port;
default = 9393;
};
user = mkOption {
description = "User that the betanin program should run under.";
type = types.str;
default = defaultUser;
};
group = mkOption {
description = "Group that the betanin program should run under.";
type = types.str;
default = defaultGroup;
};
dataDir = mkOption {
description = "Directory to store application data.";
type = types.str;
default = "/var/lib/betanin";
};
settings = mkOption {
type = types.submodule {
freeformType = settinsgFormat.type;
frontend.username = mkOption {
type = types.str;
default = "";
description = "Username used to log into the frontend. Must be set.";
};
frontend.password = mkOption {
type = types.str;
default = "";
description = ''
Password used to log into the frontend. Either password or
password_file must be set.
'';
};
frontend.password_file = mkOption {
type = with types; nullOr (either str path);
default = null;
description = ''
File containing the password used to log into the frontend. The
file must be readable by the betanin user/group.
Using a password file keeps the password out of the Nix store, but
the password is still stored in plain text in the service data
directory.
'';
};
clients.api_key = mkOption {
type = types.nullOr types.str;
default = "";
description = ''
API key used to access Betanin (e.g., from other services).
'';
};
clients.api_key_file = mkOption {
type = with types; nullOr (either str path);
default = null;
description = ''
File containing the API key used to access Betanin (e.g., from
other services). The file must be readable by the betanin
user/group.
Using a API key file keeps the API key out of the Nix store, but
the API key is still stored in plain text in the service data
directory.
'';
notifications.strings.title = mkOption {
type = types.str;
default = "[betanin] torrent `$name` $status";
description = "Notification title.";
};
notifications.strings.body = mkOption {
type = types.str;
default = "@ $time. view/use the console at http://127.0.0.1:${cfg.port}/$console_path";
description = "Notification body.";
};
};
};
example = lib.literalExpression ''
{
frontend = {
username = "foo";
password_file = "/run/secrets/betaninPasswordFile";
};
clients = {
api_key_file = "/run/secrets/betaninApiKeyFile";
};
server = {
num_parallel_jobs = 1;
};
}
'';
description = "Configuration for betanin.";
};
beetsConfig = mkOption {
description = "beets configuration.";
type = beetsFormat.type;
default = { };
};
beetsFile = mkOption {
description = "beets configuration file.";
type = with types; nullOr (either str path);
default = null;
};
};
};
config = mkIf cfg.enable {
assertions = [
{
assertion = cfg.settings.frontend.username != "";
message = "services.betanin.settings.frontend.username is required";
}
{
assertion = (cfg.settings.frontend.password == "") != (cfg.settings.frontend.password_file);
message = "services.betanin.settings.frontend.password or services.betanin.settings.frontend.password_file is required";
}
{
assertion = (cfg.settings.clients.api_key == "") != (cfg.settings.clients.api_key_file);
message = "services.betanin.settings.clients.api_key or services.betanin.settings.clients.api_key_file is required";
}
{
assertion = (cfg.beetsConfig == { }) != (cfg.beetsFile == null);
message = "either services.betanin.beetsConfig or services.betanin.beetsFile is required";
}
];
networking.firwall = mkIf cfg.openFirewall {
allowedTCPPorts = [ cfg.port ];
};
systemd.services.betanin = {
description = "Betanin service";
wantedBy = [ "multi-user.target" ];
after = [ "networking.target" ];
environment = {
HOME = cfg.dataDir;
};
script = ''
#!/bin/sh
mkdir -p ${cfg.dataDir}/.config/betanin
mkdir -p ${cfg.dataDir}/.config/beets
mkdir -p ${cfg.dataDir}/.local/share/betanin
cat ${settingsFile} > ${cfg.dataDir}/.config/betanin/config.toml
ln -sf ${beetsFile} ${cfg.dataDir}/.config/betanin/config.toml
'' ++ lib.optionalString (cfg.settings.frontend.password_file != null) ''
sed -i "s/@password@/$(cat ${cfg.settings.frontend.password_file})/" \
${cfg.dataDir}/.config/betanin/config.toml
'' ++ lib.optionalString (cfg.settings.frontend.api_key_file != null) ''
sed -i "s/@api_key@/$(cat ${cfg.settings.frontend.api_key_file})/" \
${cfg.dataDir}/.config/betanin/config.toml
'' ++ ''
chmod -w ${cfg.dataDir}/.config/betanin/config.toml
${cfg.package}/bin/betanin --port ${cfg.port}
'';
serviceConfig = lib.mkMerge [
{
User = cfg.user;
Group = cfg.group;
PrivateTmp = true;
Restart = "always";
WorkingDirectory = cfg.dataDir;
}
(mkIf (cfg.dataDir == "/var/lib/betanin") {
StateDirectory = "betanin";
})
];
};
users.users = optionalAttrs (cfg.user == defaultUser) {
${cfg.user} = {
isSystemUser = true;
group = cfg.group;
};
};
users.groups = optionalAttrs (cfg.group == defaultGroup) {
${cfg.group} = { };
};
};
}