commit 5585fefbc3261f1125f6acc8b153d3bada2b4383 · aylac.top/nixcfg-own-knot

+176

flake.lock

···

       385
       385
        
               "type": "github"

     

       386
       386
        
             }

     

       387
       387
        
           },

     

       388
       388
       +
           "flake-utils_2": {

     

       389
       389
       +
             "inputs": {

     

       390
       390
       +
               "systems": "systems_2"

     

       391
       391
       +
             },

     

       392
       392
       +
             "locked": {

     

       393
       393
       +
               "lastModified": 1694529238,

     

       394
       394
       +
               "narHash": "sha256-zsNZZGTGnMOf9YpHKJqMSsa0dXbfmxeoJ7xHlrt+xmY=",

     

       395
       395
       +
               "owner": "numtide",

     

       396
       396
       +
               "repo": "flake-utils",

     

       397
       397
       +
               "rev": "ff7b65b44d01cf9ba6a71320833626af21126384",

     

       398
       398
       +
               "type": "github"

     

       399
       399
       +
             },

     

       400
       400
       +
             "original": {

     

       401
       401
       +
               "owner": "numtide",

     

       402
       402
       +
               "repo": "flake-utils",

     

       403
       403
       +
               "type": "github"

     

       404
       404
       +
             }

     

       405
       405
       +
           },

     

       388
       406
        
           "fontix": {

     

       389
       407
        
             "inputs": {

     

       390
       408
        
               "actions-nix": "actions-nix_2",

     
···

       569
       587
        
               "type": "github"

     

       570
       588
        
             }

     

       571
       589
        
           },

     

       590
       590
       +
           "gomod2nix": {

     

       591
       591
       +
             "inputs": {

     

       592
       592
       +
               "flake-utils": "flake-utils_2",

     

       593
       593
       +
               "nixpkgs": [

     

       594
       594
       +
                 "tangled-core",

     

       595
       595
       +
                 "nixpkgs"

     

       596
       596
       +
               ]

     

       597
       597
       +
             },

     

       598
       598
       +
             "locked": {

     

       599
       599
       +
               "lastModified": 1754078208,

     

       600
       600
       +
               "narHash": "sha256-YVoIFDCDpYuU3riaDEJ3xiGdPOtsx4sR5eTzHTytPV8=",

     

       601
       601
       +
               "owner": "nix-community",

     

       602
       602
       +
               "repo": "gomod2nix",

     

       603
       603
       +
               "rev": "7f963246a71626c7fc70b431a315c4388a0c95cf",

     

       604
       604
       +
               "type": "github"

     

       605
       605
       +
             },

     

       606
       606
       +
             "original": {

     

       607
       607
       +
               "owner": "nix-community",

     

       608
       608
       +
               "repo": "gomod2nix",

     

       609
       609
       +
               "type": "github"

     

       610
       610
       +
             }

     

       611
       611
       +
           },

     

       572
       612
        
           "home-manager": {

     

       573
       613
        
             "inputs": {

     

       574
       614
        
               "nixpkgs": [

     
···

       654
       694
        
               "type": "github"

     

       655
       695
        
             }

     

       656
       696
        
           },

     

       697
       697
       +
           "htmx-src": {

     

       698
       698
       +
             "flake": false,

     

       699
       699
       +
             "locked": {

     

       700
       700
       +
               "narHash": "sha256-nm6avZuEBg67SSyyZUhjpXVNstHHgUxrtBHqJgowU08=",

     

       701
       701
       +
               "type": "file",

     

       702
       702
       +
               "url": "https://unpkg.com/htmx.org@2.0.4/dist/htmx.min.js"

     

       703
       703
       +
             },

     

       704
       704
       +
             "original": {

     

       705
       705
       +
               "type": "file",

     

       706
       706
       +
               "url": "https://unpkg.com/htmx.org@2.0.4/dist/htmx.min.js"

     

       707
       707
       +
             }

     

       708
       708
       +
           },

     

       709
       709
       +
           "htmx-ws-src": {

     

       710
       710
       +
             "flake": false,

     

       711
       711
       +
             "locked": {

     

       712
       712
       +
               "narHash": "sha256-2fg6KyEJoO24q0fQqbz9RMaYNPQrMwpZh29tkSqdqGY=",

     

       713
       713
       +
               "type": "file",

     

       714
       714
       +
               "url": "https://cdn.jsdelivr.net/npm/htmx-ext-ws@2.0.2"

     

       715
       715
       +
             },

     

       716
       716
       +
             "original": {

     

       717
       717
       +
               "type": "file",

     

       718
       718
       +
               "url": "https://cdn.jsdelivr.net/npm/htmx-ext-ws@2.0.2"

     

       719
       719
       +
             }

     

       720
       720
       +
           },

     

       721
       721
       +
           "ibm-plex-mono-src": {

     

       722
       722
       +
             "flake": false,

     

       723
       723
       +
             "locked": {

     

       724
       724
       +
               "lastModified": 1731402384,

     

       725
       725
       +
               "narHash": "sha256-OwUmrPfEehLDz0fl2ChYLK8FQM2p0G1+EMrGsYEq+6g=",

     

       726
       726
       +
               "type": "tarball",

     

       727
       727
       +
               "url": "https://github.com/IBM/plex/releases/download/@ibm/plex-mono@1.1.0/ibm-plex-mono.zip"

     

       728
       728
       +
             },

     

       729
       729
       +
             "original": {

     

       730
       730
       +
               "type": "tarball",

     

       731
       731
       +
               "url": "https://github.com/IBM/plex/releases/download/@ibm/plex-mono@1.1.0/ibm-plex-mono.zip"

     

       732
       732
       +
             }

     

       733
       733
       +
           },

     

       734
       734
       +
           "indigo": {

     

       735
       735
       +
             "flake": false,

     

       736
       736
       +
             "locked": {

     

       737
       737
       +
               "lastModified": 1753693716,

     

       738
       738
       +
               "narHash": "sha256-DMIKnCJRODQXEHUxA+7mLzRALmnZhkkbHlFT2rCQYrE=",

     

       739
       739
       +
               "owner": "oppiliappan",

     

       740
       740
       +
               "repo": "indigo",

     

       741
       741
       +
               "rev": "5f170569da9360f57add450a278d73538092d8ca",

     

       742
       742
       +
               "type": "github"

     

       743
       743
       +
             },

     

       744
       744
       +
             "original": {

     

       745
       745
       +
               "owner": "oppiliappan",

     

       746
       746
       +
               "repo": "indigo",

     

       747
       747
       +
               "type": "github"

     

       748
       748
       +
             }

     

       749
       749
       +
           },

     

       750
       750
       +
           "inter-fonts-src": {

     

       751
       751
       +
             "flake": false,

     

       752
       752
       +
             "locked": {

     

       753
       753
       +
               "lastModified": 1731687360,

     

       754
       754
       +
               "narHash": "sha256-5vdKKvHAeZi6igrfpbOdhZlDX2/5+UvzlnCQV6DdqoQ=",

     

       755
       755
       +
               "type": "tarball",

     

       756
       756
       +
               "url": "https://github.com/rsms/inter/releases/download/v4.1/Inter-4.1.zip"

     

       757
       757
       +
             },

     

       758
       758
       +
             "original": {

     

       759
       759
       +
               "type": "tarball",

     

       760
       760
       +
               "url": "https://github.com/rsms/inter/releases/download/v4.1/Inter-4.1.zip"

     

       761
       761
       +
             }

     

       762
       762
       +
           },

     

       657
       763
        
           "lanzaboote": {

     

       658
       764
        
             "inputs": {

     

       659
       765
        
               "crane": "crane",

     
···

       678
       784
        
               "ref": "v0.4.2",

     

       679
       785
        
               "repo": "lanzaboote",

     

       680
       786
        
               "type": "github"

     

       787
       787
       +
             }

     

       788
       788
       +
           },

     

       789
       789
       +
           "lucide-src": {

     

       790
       790
       +
             "flake": false,

     

       791
       791
       +
             "locked": {

     

       792
       792
       +
               "lastModified": 1754044466,

     

       793
       793
       +
               "narHash": "sha256-+exBR2OToB1iv7ZQI2S4B0lXA/QRvC9n6U99UxGpJGs=",

     

       794
       794
       +
               "type": "tarball",

     

       795
       795
       +
               "url": "https://github.com/lucide-icons/lucide/releases/download/0.536.0/lucide-icons-0.536.0.zip"

     

       796
       796
       +
             },

     

       797
       797
       +
             "original": {

     

       798
       798
       +
               "type": "tarball",

     

       799
       799
       +
               "url": "https://github.com/lucide-icons/lucide/releases/download/0.536.0/lucide-icons-0.536.0.zip"

     

       681
       800
        
             }

     

       682
       801
        
           },

     

       683
       802
        
           "nix-darwin": {

     
···

       890
       1009
        
               "nixpkgs-unstable": "nixpkgs-unstable",

     

       891
       1010
        
               "nur": "nur",

     

       892
       1011
        
               "secrets": "secrets",

     

       1012
       1012
       +
               "tangled-core": "tangled-core",

     

       893
       1013
        
               "zen-browser": "zen-browser"

     

       894
       1014
        
             }

     

       895
       1015
        
           },

     
···

       930
       1050
        
               "type": "github"

     

       931
       1051
        
             }

     

       932
       1052
        
           },

     

       1053
       1053
       +
           "sqlite-lib-src": {

     

       1054
       1054
       +
             "flake": false,

     

       1055
       1055
       +
             "locked": {

     

       1056
       1056
       +
               "lastModified": 1706631843,

     

       1057
       1057
       +
               "narHash": "sha256-bJoMjirsBjm2Qk9KPiy3yV3+8b/POlYe76/FQbciHro=",

     

       1058
       1058
       +
               "type": "tarball",

     

       1059
       1059
       +
               "url": "https://sqlite.org/2024/sqlite-amalgamation-3450100.zip"

     

       1060
       1060
       +
             },

     

       1061
       1061
       +
             "original": {

     

       1062
       1062
       +
               "type": "tarball",

     

       1063
       1063
       +
               "url": "https://sqlite.org/2024/sqlite-amalgamation-3450100.zip"

     

       1064
       1064
       +
             }

     

       1065
       1065
       +
           },

     

       933
       1066
        
           "systems": {

     

       934
       1067
        
             "locked": {

     

       935
       1068
        
               "lastModified": 1681028828,

     
···

       943
       1076
        
               "owner": "nix-systems",

     

       944
       1077
        
               "repo": "default",

     

       945
       1078
        
               "type": "github"

     

       1079
       1079
       +
             }

     

       1080
       1080
       +
           },

     

       1081
       1081
       +
           "systems_2": {

     

       1082
       1082
       +
             "locked": {

     

       1083
       1083
       +
               "lastModified": 1681028828,

     

       1084
       1084
       +
               "narHash": "sha256-Vy1rq5AaRuLzOxct8nz4T6wlgyUR7zLU309k9mBC768=",

     

       1085
       1085
       +
               "owner": "nix-systems",

     

       1086
       1086
       +
               "repo": "default",

     

       1087
       1087
       +
               "rev": "da67096a3b9bf56a91d16901293e51ba5b49a27e",

     

       1088
       1088
       +
               "type": "github"

     

       1089
       1089
       +
             },

     

       1090
       1090
       +
             "original": {

     

       1091
       1091
       +
               "owner": "nix-systems",

     

       1092
       1092
       +
               "repo": "default",

     

       1093
       1093
       +
               "type": "github"

     

       1094
       1094
       +
             }

     

       1095
       1095
       +
           },

     

       1096
       1096
       +
           "tangled-core": {

     

       1097
       1097
       +
             "inputs": {

     

       1098
       1098
       +
               "gomod2nix": "gomod2nix",

     

       1099
       1099
       +
               "htmx-src": "htmx-src",

     

       1100
       1100
       +
               "htmx-ws-src": "htmx-ws-src",

     

       1101
       1101
       +
               "ibm-plex-mono-src": "ibm-plex-mono-src",

     

       1102
       1102
       +
               "indigo": "indigo",

     

       1103
       1103
       +
               "inter-fonts-src": "inter-fonts-src",

     

       1104
       1104
       +
               "lucide-src": "lucide-src",

     

       1105
       1105
       +
               "nixpkgs": [

     

       1106
       1106
       +
                 "nixpkgs"

     

       1107
       1107
       +
               ],

     

       1108
       1108
       +
               "sqlite-lib-src": "sqlite-lib-src"

     

       1109
       1109
       +
             },

     

       1110
       1110
       +
             "locked": {

     

       1111
       1111
       +
               "lastModified": 1756139281,

     

       1112
       1112
       +
               "narHash": "sha256-A0FYRaFr7rBtJD5DeTDLxF42Yj8MsN3fdd7wgH9dSmk=",

     

       1113
       1113
       +
               "ref": "refs/heads/master",

     

       1114
       1114
       +
               "rev": "8dae47cfb25506690fe32082fb973fabdb57af9f",

     

       1115
       1115
       +
               "revCount": 1234,

     

       1116
       1116
       +
               "type": "git",

     

       1117
       1117
       +
               "url": "https://tangled.sh/@tangled.sh/core"

     

       1118
       1118
       +
             },

     

       1119
       1119
       +
             "original": {

     

       1120
       1120
       +
               "type": "git",

     

       1121
       1121
       +
               "url": "https://tangled.sh/@tangled.sh/core"

     

       946
       1122
        
             }

     

       947
       1123
        
           },

     

       948
       1124
        
           "treefmt-nix": {

flake.nix

···

       52
       52
        
       

     

       53
       53
        
           nur.url = "github:nix-community/NUR";

     

       54
       54
        
       

     

       55
       55
       +
           tangled-core = {

     

       56
       56
       +
             url = "git+https://tangled.sh/@tangled.sh/core";

     

       57
       57
       +
             inputs.nixpkgs.follows = "nixpkgs";

     

       58
       58
       +
           };

     

       59
       59
       +
       

     

       55
       60
        
           zen-browser = {

     

       56
       61
        
             url = "github:0xc000022070/zen-browser-flake";

     

       57
       62
        
             inputs.nixpkgs.follows = "nixpkgs";

hosts/jezebel/default.nix

···

       47
       47
        
               enable = true;

     

       48
       48
        
               enableCaddy = true;

     

       49
       49
        
             };

     

       50
       50
       +
             tangled-knot.enable = true;

     

       50
       51
        
             uptime-kuma.enable = true;

     

       51
       52
        
           };

     

       52
       53
        
         };

modules/flake/nixos.nix

···

       36
       36
        
                     inputs.disko.nixosModules.disko

     

       37
       37
        
                     inputs.home-manager.nixosModules.home-manager

     

       38
       38
        
                     inputs.lanzaboote.nixosModules.lanzaboote

     

       39
       39
       +
                     inputs.tangled-core.nixosModules.knot

     

       39
       40
        
                     modules.hardware

     

       40
       41
        
                     modules.nixos

     

       41
       42
        
                     modules.snippets

modules/nixos/profiles/backups/default.nix

···

       262
       262
        
               inherit (config.services.jellyseerr) enable;

     

       263
       263
        
               paths = ["/var/lib/jellyseerr"];

     

       264
       264
        
             }

     

       265
       265
       +
             {

     

       266
       266
       +
               name = "tangled-knot";

     

       267
       267
       +
               inherit (config.services.tangled-knot) enable;

     

       268
       268
       +
               paths = [config.services.tangled-knot.stateDir];

     

       269
       269
       +
             }

     

       265
       270
        
           ];

     

       266
       271
        
         };

     

       267
       272
        
       }

modules/nixos/services/default.nix

···

       23
       23
        
           ./redlib

     

       24
       24
        
           ./syncthing

     

       25
       25
        
           ./tailscale

     

       26
       26
       +
           ./tangled-knot

     

       26
       27
        
           ./uptime-kuma

     

       27
       28
        
           ./vaultwarden

     

       28
       29
        
           ./webdav-server-rs

+52

modules/nixos/services/tangled-knot/default.nix

···

       1
       1
       +
       {

     

       2
       2
       +
         config,

     

       3
       3
       +
         lib,

     

       4
       4
       +
         ...

     

       5
       5
       +
       }: let

     

       6
       6
       +
         name = "tangled-knot";

     

       7
       7
       +
         cfg = config.myNixOS.services.${name};

     

       8
       8
       +
       

     

       9
       9
       +
         network = config.mySnippets.aylac-top;

     

       10
       10
       +
         service = network.networkMap.${name};

     

       11
       11
       +
       in {

     

       12
       12
       +
         options.myNixOS.services.${name} = {

     

       13
       13
       +
           enable = lib.mkEnableOption "${name} server";

     

       14
       14
       +
           autoProxy = lib.mkOption {

     

       15
       15
       +
             default = true;

     

       16
       16
       +
             example = false;

     

       17
       17
       +
             description = "${name} auto proxy";

     

       18
       18
       +
             type = lib.types.bool;

     

       19
       19
       +
           };

     

       20
       20
       +
         };

     

       21
       21
       +
       

     

       22
       22
       +
         config = lib.mkIf cfg.enable {

     

       23
       23
       +
           services = {

     

       24
       24
       +
             caddy.virtualHosts = lib.mkIf cfg.autoProxy {

     

       25
       25
       +
               "${service.vHost}" = {

     

       26
       26
       +
                 extraConfig = ''

     

       27
       27
       +
                   encode gzip zstd

     

       28
       28
       +
                   reverse_proxy ${service.hostName}:${toString service.port}

     

       29
       29
       +
                 '';

     

       30
       30
       +
               };

     

       31
       31
       +
       

     

       32
       32
       +
               "ssh.${service.vHost}" = {

     

       33
       33
       +
                 extraConfig = ''

     

       34
       34
       +
                   encode gzip zstd

     

       35
       35
       +
                   reverse_proxy ${service.hostName}:22

     

       36
       36
       +
                 '';

     

       37
       37
       +
               };

     

       38
       38
       +
             };

     

       39
       39
       +
       

     

       40
       40
       +
             tangled-knot = {

     

       41
       41
       +
               enable = false;

     

       42
       42
       +
               openFirewall = true;

     

       43
       43
       +
               stateDir = "/home/git";

     

       44
       44
       +
               server = {

     

       45
       45
       +
                 owner = "did:plc:3c6vkaq7xf5kz3va3muptjh5";

     

       46
       46
       +
                 hostname = service.vHost;

     

       47
       47
       +
                 listenAddr = "0.0.0.0:${toString service.port}";

     

       48
       48
       +
               };

     

       49
       49
       +
             };

     

       50
       50
       +
           };

     

       51
       51
       +
         };

     

       52
       52
       +
       }

+7 -1

modules/snippets/aylac-top/default.nix

···

       49
       49
        
               glance = {

     

       50
       50
        
                 inherit (config.mySnippets.tailnet.networkMap.glance) hostName;

     

       51
       51
        
                 inherit (config.mySnippets.tailnet.networkMap.glance) port;

     

       52
       52
       -
                 vHost = "services.aylac.top";

     

       52
       52
       +
                 vHost = "home.aylac.top";

     

       53
       53
       +
               };

     

       54
       54
       +
       

     

       55
       55
       +
               tangled-knot = {

     

       56
       56
       +
                 hostName = "jezebel";

     

       57
       57
       +
                 port = 5555;

     

       58
       58
       +
                 vHost = "knot.aylac.top";

     

       53
       59
        
               };

     

       54
       60
        
             };

     

       55
       61
        
           };