nix-git/hosts/yodaNas/host-specific.nix

{ config, pkgs, ... }:
{
  imports = [
    ./syncthing.nix
  ];

  # Operating a Snowflake proxy helps others circumvent censorship.
  # Safe to run.
  # https://wiki.nixos.org/w/index.php?title=Tor
  #
  # TODO: Check if working.
  # systemctl status snowflake-proxy.service
  #
  # Enable snowflake-proxy, a system to defeat internet censorship.
  services.snowflake-proxy.enable = true;
  # Maximum concurrent clients allowed.
  services.snowflake-proxy.capacity = 10;

  # Update and start Jinja-Compose project
  # during boot and after every 30 minutes.
  # To view the log, run
  #   journalctl -b -u Jinja-Compose -f
  #
  systemd.timers."Jinja-Compose" = {
    wantedBy = [ "timers.target" ];
    partOf = [ "Jinja-Compose.service" ];
    timerConfig = {
      OnBootSec = "0m";
      OnUnitInactiveSec = "30m";

      AccuracySec = "1m";
      RandomizedDelaySec = "1m";
    };
  };
  # TODO: Add shutdown script (./docker-compose down).
  systemd.services."Jinja-Compose" = {
    description = "Update and start Jinja-Compose project";
    serviceConfig = {
      Type = "oneshot";
      PrivateTmp = true;
      User = "root";
    };
    path = with pkgs; [
      # The `docker-compose` helper script is written in `bash` (!)
      bash
      docker
    ];
    script = ''
      set -eu -o pipefail
      /jc-config/docker-compose pull
      /jc-config/docker-compose up -d --wait
    '';
  };
}
add netcup-dns, start Jinja-Compose, refactor 2023-10-02 13:11:30 +02:00			`{ config, pkgs, ... }:`
			`{`
syncthing server 2023-11-28 15:21:03 +01:00			`imports = [`
			`./syncthing.nix`
			`];`
de-p1st-monitor: add config files 2023-11-20 14:09:10 +01:00
add snowflake 2024-10-07 14:02:00 +02:00			`# Operating a Snowflake proxy helps others circumvent censorship.`
			`# Safe to run.`
			`# https://wiki.nixos.org/w/index.php?title=Tor`
			`#`
			`# TODO: Check if working.`
			`# systemctl status snowflake-proxy.service`
			`#`
			`# Enable snowflake-proxy, a system to defeat internet censorship.`
			`services.snowflake-proxy.enable = true;`
			`# Maximum concurrent clients allowed.`
			`services.snowflake-proxy.capacity = 10;`

periodically update docker container (Jinja-Compose) 2023-11-05 17:15:01 +01:00			`# Update and start Jinja-Compose project`
			`# during boot and after every 30 minutes.`
			`# To view the log, run`
add netcup-dns, start Jinja-Compose, refactor 2023-10-02 13:11:30 +02:00			`# journalctl -b -u Jinja-Compose -f`
			`#`
periodically update docker container (Jinja-Compose) 2023-11-05 17:15:01 +01:00			`systemd.timers."Jinja-Compose" = {`
			`wantedBy = [ "timers.target" ];`
			`partOf = [ "Jinja-Compose.service" ];`
			`timerConfig = {`
			`OnBootSec = "0m";`
			`OnUnitInactiveSec = "30m";`

			`AccuracySec = "1m";`
			`RandomizedDelaySec = "1m";`
			`};`
			`};`
docs 2024-01-08 18:40:18 +01:00			`# TODO: Add shutdown script (./docker-compose down).`
add netcup-dns, start Jinja-Compose, refactor 2023-10-02 13:11:30 +02:00			`systemd.services."Jinja-Compose" = {`
periodically update docker container (Jinja-Compose) 2023-11-05 17:15:01 +01:00			`description = "Update and start Jinja-Compose project";`
			`serviceConfig = {`
			`Type = "oneshot";`
			`PrivateTmp = true;`
			`User = "root";`
			`};`
add netcup-dns, start Jinja-Compose, refactor 2023-10-02 13:11:30 +02:00			`path = with pkgs; [`
			# The `docker-compose` helper script is written in `bash` (!)
			`bash`
			`docker`
			`];`
			`script = ''`
yodaNas: pull docker images 2023-10-08 15:38:44 +02:00			`set -eu -o pipefail`
rm special output handling no longer required as we changed journalwatch priority to 6 (loglevel info) 2024-09-24 16:25:11 +02:00			`/jc-config/docker-compose pull`
			`/jc-config/docker-compose up -d --wait`
add netcup-dns, start Jinja-Compose, refactor 2023-10-02 13:11:30 +02:00			`'';`
			`};`
			`}`