xun/nixos-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

firefly

Browse source
This commit is contained in:
xunuwu 2025-01-21 16:38:11 +01:00
parent 3181bca81c
commit 3477777fb0
Signed by: xun
SSH key fingerprint: SHA256:Uot/1WoAjWAeqLOHA5vYy4phhVydsH7jCPmBjaPZfgI
4 changed files with 105 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

46
sys/machines/hopper/lab/default.nix
View file

@ -154,6 +154,16 @@ in {
hostName = "oauth2.${domain}:${toString caddyPort}";
extraConfig = "reverse_proxy unix//run/oauth2-proxy/oauth2-proxy.sock";
};
firefly = {
useACMEHost = null;
hostName = "firefly.hopper.xun.host:80";
extraConfig = ''
encode zstd gzip
root * ${config.services.firefly-iii.package}/public
php_fastcgi unix/${config.services.phpfpm.pools.firefly-iii.socket}
file_server
'';
};
# slskd-pub = {
# hostName = "slskd.${domain}:${toString caddyPort}";
# extraConfig = ''
@ -202,6 +212,36 @@ in {
};
};
# https://github.com/diogotcorreia/dotfiles/blob/f49cda185cef30d8150a08b60112766f4fc95813/hosts/hera/firefly-iii.nix#L19
services.firefly-iii = {
enable = true;
virtualHost = "firefly.hopper.xun.host";
group = config.services.caddy.group;
settings = {
DB_CONNECTION = "pgsql";
APP_KEY_FILE = config.sops.secrets.firefly.path;
};
};
services.postgresql = {
enable = true;
ensureUsers = [
{
name = config.services.firefly-iii.user;
ensureDBOwnership = true;
ensureClauses.login = true;
}
];
ensureDatabases = [config.services.firefly-iii.user];
};
services.firefly-iii-data-importer = {
enable = true;
group = config.services.caddy.group;
settings = {
FIREFLY_III_URL = config.services.firefly-iii.settings.APP_URL;
FIREFLY_III_ACCESS_TOKEN = config.sops.secrets.firefly-data-importer.path;
};
};
systemd.services.homepage-dashboard.vpnConfinement = {
enable = true;
vpnNamespace = "wg";
@ -265,6 +305,12 @@ in {
icon = "kanidm";
};
}
{
"firefly iii" = {
href = "http://firefly.hopper.xun.host";
icon = "firefly-iii";
};
}
];
}
];