luj/snowfield
1
0
Fork 0
mirror of https://github.com/JulienMalka/snowfield.git synced 2025-06-08 10:09:04 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: move to agenix secrets

Browse source
This commit is contained in:
Luj 2024-05-09 00:48:35 +02:00
parent e392ca9001
commit 8ee88f922c
Signed by: luj
GPG key ID: 6FC74C847011FD83
11 changed files with 214 additions and 253 deletions
Download patch file Download diff file Expand all files Collapse all files

36
modules/navidrome/default.nix
View file

@ -1,4 +1,9 @@
{ lib, pkgs, config, ... }:
{
lib,
pkgs,
config,
...
}:
with lib;
let
cfg = config.luj.navidrome;
@ -22,23 +27,12 @@ in
description = "Group under which Navidrome runs.";
};
nginx.enable = mkEnableOption "activate nginx";
nginx.subdomain = mkOption {
type = types.str;
};
nginx.subdomain = mkOption { type = types.str; };
};
config = mkIf cfg.enable (
mkMerge [{
sops.secrets."navidrome.json" = {
owner = cfg.user;
format = "binary";
sopsFile = ../../secrets/navidrome-config;
};
config = mkIf cfg.enable (mkMerge [
{
systemd.services.navidrome = {
@ -55,16 +49,10 @@ in
WorkingDirectory = "/var/lib/navidrome";
};
};
}
(mkIf cfg.nginx.enable (mkSubdomain cfg.nginx.subdomain port))
(mkIf cfg.nginx.enable (mkSubdomain cfg.nginx.subdomain port))
(mkIf cfg.nginx.enable (mkVPNSubdomain cfg.nginx.subdomain port))]);
(mkIf cfg.nginx.enable (mkVPNSubdomain cfg.nginx.subdomain port))
]);
}