kitten.sh / system
Personal Nix setup
fork atom

Add mqtt server

kitten.sh 2c985a96 594931d7

options
unified split
Changed files
+67
modules
automation
default.nix
mqtt.nix
default.nix
+20
modules/automation/default.nix 
···

       

       
1

       
+

       
{ lib, helpers, ... }:


     

       

       
2

       
+

       



     

       

       
3

       
+

       
with lib; {


     

       

       
4

       
+

       
  options.modules.automation = {


     

       

       
5

       
+

       
    enable = mkOption {


     

       

       
6

       
+

       
      default = false;


     

       

       
7

       
+

       
      example = true;


     

       

       
8

       
+

       
      description = "Whether to enable Home Automation options.";


     

       

       
9

       
+

       
      type = types.bool;


     

       

       
10

       
+

       
    };


     

       

       
11

       
+

       
  };


     

       

       
12

       
+

       



     

       

       
13

       
+

       
  config.modules.automation = {


     

       

       
14

       
+

       
    enable = if helpers.isLinux then (mkDefault false) else (mkForce false);


     

       

       
15

       
+

       
  };


     

       

       
16

       
+

       
} // helpers.linuxAttrs {


     

       

       
17

       
+

       
  imports = [


     

       

       
18

       
+

       
    ./mqtt.nix


     

       

       
19

       
+

       
  ];


     

       

       
20

       
+

       
}
+46
modules/automation/mqtt.nix 
···

       

       
1

       
+

       
{ lib, config, ... }:


     

       

       
2

       
+

       



     

       

       
3

       
+

       
with lib;


     

       

       
4

       
+

       
let


     

       

       
5

       
+

       
  cfg = config.modules.automation;


     

       

       
6

       
+

       
in {


     

       

       
7

       
+

       
  options.modules.automation.mqtt = {


     

       

       
8

       
+

       
    enable = mkOption {


     

       

       
9

       
+

       
      default = cfg.enable;


     

       

       
10

       
+

       
      example = true;


     

       

       
11

       
+

       
      description = "Whether to enable the mqtt mosquitto broker.";


     

       

       
12

       
+

       
      type = types.bool;


     

       

       
13

       
+

       
    };


     

       

       
14

       
+

       
  };


     

       

       
15

       
+

       



     

       

       
16

       
+

       
  config = mkIf cfg.mqtt.enable {


     

       

       
17

       
+

       
    age.secrets = let


     

       

       
18

       
+

       
      owner = config.users.users.mosquitto.name;


     

       

       
19

       
+

       
      group = config.users.users.mosquitto.group;


     

       

       
20

       
+

       
    in {


     

       

       
21

       
+

       
      "mqtt.crt" = {


     

       

       
22

       
+

       
        inherit owner group;


     

       

       
23

       
+

       
        file = ./certs/mqtt.crt.age;


     

       

       
24

       
+

       
      };


     

       

       
25

       
+

       
      "mqtt.key" = {


     

       

       
26

       
+

       
        inherit owner group;


     

       

       
27

       
+

       
        file = ./certs/mqtt.key.age;


     

       

       
28

       
+

       
      };


     

       

       
29

       
+

       
    };


     

       

       
30

       
+

       



     

       

       
31

       
+

       
    services.mosquitto = {


     

       

       
32

       
+

       
      enable = true;


     

       

       
33

       
+

       
      listeners = [


     

       

       
34

       
+

       
        {


     

       

       
35

       
+

       
          port = 1883;


     

       

       
36

       
+

       
          settings = {


     

       

       
37

       
+

       
            cafile = ../base/certs/ca.crt;


     

       

       
38

       
+

       
            certfile = config.age.secrets."mqtt.crt".path;


     

       

       
39

       
+

       
            keyfile = config.age.secrets."mqtt.key".path;


     

       

       
40

       
+

       
            require_certificate = true;


     

       

       
41

       
+

       
          };


     

       

       
42

       
+

       
        }


     

       

       
43

       
+

       
      ];


     

       

       
44

       
+

       
    };


     

       

       
45

       
+

       
  };


     

       

       
46

       
+

       
}
+1
modules/default.nix 
···

       
9

       
9

       
 

       
    ./nvim


     

       
10

       
10

       
 

       
    ./router


     

       
11

       
11

       
 

       
    ./server


     

       

       
12

       
+

       
    ./automation


     

       
12

       
13

       
 

       
  ];


     

       
13

       
14

       
 

       
}