dev/nixfiles
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity

nixos: Add Sharry file sharing service

Browse Source
This commit is contained in:
Jack O'Sullivan
2022-11-20 18:41:49 +00:00
parent 0038d9c987
commit d01078dc7b
7 changed files with 124 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
nixos/boxes/colony/vms/shill/containers/middleman/vhosts.nix
View File

@@ -357,6 +357,15 @@ in
];
useACMEHost = lib.my.pubDomain;
};
"share.${lib.my.pubDomain}" = {
locations."/" = {
proxyPass = "http://object-ctr.${config.networking.domain}:9090";
proxyWebsockets = true;
extraConfig = lib.my.nginx.proxyHeaders;
};
useACMEHost = lib.my.pubDomain;
};
};
minio =

73
nixos/boxes/colony/vms/shill/containers/object.nix
View File

@@ -29,11 +29,17 @@
secrets = {
key = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFdHbZErWLmTPO/aEWB1Fup/aGMf31Un5Wk66FJwTz/8";
files."minio.env" = {};
files = {
"object/minio.env" = {};
"object/sharry.conf" = {
owner = "sharry";
group = "sharry";
};
};
};
firewall = {
tcp.allowed = [ 9000 9001 ];
tcp.allowed = [ 9000 9001 config.services.sharry.config.bind.port ];
};
};
@@ -56,9 +62,69 @@
enable = true;
region = "eu-central-1";
browser = true;
rootCredentialsFile = config.age.secrets."minio.env".path;
rootCredentialsFile = config.age.secrets."object/minio.env".path;
dataDir = [ "/mnt/minio" ];
};
sharry = {
enable = true;
configOverridesFile = config.age.secrets."object/sharry.conf".path;
config = {
base-url = "https://share.${lib.my.pubDomain}";
bind.address = "[::]";
alias-member-enabled = true;
webapp = {
chunk-size = "64M";
};
backend = {
auth = {
fixed = {
enabled = true;
user = "dev";
};
internal = {
enabled = true;
order = 50;
};
};
jdbc = {
url = "jdbc:postgresql://colony-psql:5432/sharry";
user = "sharry";
};
files = {
default-store = "minio";
stores = {
database.enabled = false;
minio = {
enabled = true;
type = "s3";
endpoint = "https://s3.nul.ie";
access-key = "share";
bucket = "share";
};
};
};
compute-checksum.parallel = 4;
signup.mode = "invite";
share = {
max-size = "128G";
max-validity = "3650 days";
};
mail = {
enabled = true;
smtp = {
host = "mail.nul.ie";
port = 587;
user = "sharry@nul.ie";
ssl-type = "starttls";
default-from = "Sharry <sharry@nul.ie>";
timeout = "30 seconds";
};
};
};
};
};
};
}
(mkIf config.my.build.isDevVM {
@@ -66,6 +132,7 @@
forwardPorts = [
{ from = "host"; host.port = 9000; guest.port = 9000; }
{ from = "host"; host.port = 9001; guest.port = 9001; }
{ from = "host"; guest.port = config.services.sharry.config.bind.port; }
];
};
})

2
nixos/modules/common.nix
View File

@@ -17,6 +17,7 @@ in
imports = [
inputs.impermanence.nixosModule
inputs.agenix.nixosModules.age
inputs.sharry.nixosModules.default
];
config = mkMerge [
@@ -71,6 +72,7 @@ in
nixpkgs = {
overlays = [
inputs.deploy-rs.overlay
inputs.sharry.overlays.default
];
config = {
allowUnfree = true;