Charlotte Van Petegem
eeff843418
All checks were successful
Cachix / build (elendel) (push) Successful in 1m33s
Cachix / build (kholinar) (push) Successful in 1m57s
Cachix / build (lasting-integrity) (push) Successful in 1m8s
Cachix / build (marabethia) (push) Successful in 1m30s
Cachix / build (urithiru) (push) Successful in 1m11s
39 lines
922 B
Nix
39 lines
922 B
Nix
{ config, lib, pkgs, ... }:
|
|
|
|
{
|
|
options.chvp.services.accentor.enable = lib.mkOption {
|
|
default = false;
|
|
example = true;
|
|
};
|
|
|
|
config = lib.mkIf config.chvp.services.accentor.enable {
|
|
services.postgresql.enable = true;
|
|
|
|
services.accentor = {
|
|
enable = true;
|
|
home = "/var/lib/accentor";
|
|
hostname = "accentor.vanpetegem.me";
|
|
environmentFile = config.age.secrets."passwords/services/accentor".path;
|
|
rescanTimer = {
|
|
enable = true;
|
|
dates = "00:00";
|
|
};
|
|
nginx = {
|
|
forceSSL = true;
|
|
useACMEHost = "vanpetegem.me";
|
|
};
|
|
};
|
|
|
|
security.doas.extraRules = [{
|
|
users = [ "charlotte" ];
|
|
noPass = true;
|
|
cmd = "accentor-console";
|
|
runAs = "accentor";
|
|
}];
|
|
|
|
age.secrets."passwords/services/accentor" = {
|
|
file = ../../../../secrets/passwords/services/accentor.age;
|
|
owner = "accentor";
|
|
};
|
|
};
|
|
}
|