From 4581e8ff1fd4579843554dbc525f7d9ab2702cda Mon Sep 17 00:00:00 2001 From: nydragon Date: Tue, 18 Feb 2025 19:05:48 +0100 Subject: [PATCH] feat: add freshrss and calibre-web --- hosts/shan/calibre-web.nix | 20 ++++++++++++++++++++ hosts/shan/default.nix | 27 +++++++++++++++++++++++++++ options/system/roles/gaming.nix | 4 +++- secrets/freshrss-default-password.age | 7 +++++++ secrets/secrets.nix | 4 ++++ 5 files changed, 61 insertions(+), 1 deletion(-) create mode 100644 hosts/shan/calibre-web.nix create mode 100644 secrets/freshrss-default-password.age diff --git a/hosts/shan/calibre-web.nix b/hosts/shan/calibre-web.nix new file mode 100644 index 0000000..48146b0 --- /dev/null +++ b/hosts/shan/calibre-web.nix @@ -0,0 +1,20 @@ +{ }: +{ + + config = { + calibre-web = { + enable = true; + options = { + enableBookUploading = true; + }; + }; + + fileSystems."/mnt/books" = { + device = "192.168.178.21:/mnt/Fort/data/books"; + fsType = "nfs"; + options = [ + "x-systemd.automount" + ]; + }; + }; +} diff --git a/hosts/shan/default.nix b/hosts/shan/default.nix index 3eb93f6..6539aa7 100644 --- a/hosts/shan/default.nix +++ b/hosts/shan/default.nix @@ -9,6 +9,7 @@ (modulesPath + "/profiles/qemu-guest.nix") ./disk-config.nix ./adguard.nix + ./calibre-web.nix ]; swapDevices = [ @@ -21,6 +22,10 @@ file = ../../secrets/adguard-dns-list.age; mode = "444"; }; + freshrss-default-password = { + file = ../../secrets/freshrss-default-password.age; + owner = config.services.freshrss.user; + }; }; boot.loader.grub = { @@ -124,6 +129,16 @@ }; incremental.enable = true; } + { + sources = [ "/mnt/books" ]; + target = { + location = "books"; + type = "rsyncd"; + host = "nihilus"; + }; + incremental.enable = true; + } + ]; }; }; @@ -176,6 +191,11 @@ "paperless.ccnlc.eu" = mkVHLocal config.modules.server.paperless.port; "fritz.ccnlc.eu" = mkVH "http://192.168.178.1" 80; "truenas.ccnlc.eu" = mkVH "https://192.168.178.21" 443; + "calibre.ccnlc.eu" = mkVHLocal config.services.calibre-web.listen.port; + ${config.services.freshrss.virtualHost} = { + forceSSL = true; + useACMEHost = "ccnlc.eu"; + }; }; }; @@ -231,6 +251,13 @@ port = 5000; }; + freshrss = { + enable = true; + passwordFile = config.age.secrets.freshrss-default-password.path; + virtualHost = "rss.ccnlc.eu"; + baseUrl = "https://rss.ccnlc.eu"; + }; + home-assistant = { enable = true; openFirewall = true; diff --git a/options/system/roles/gaming.nix b/options/system/roles/gaming.nix index 1085120..95e4a1b 100644 --- a/options/system/roles/gaming.nix +++ b/options/system/roles/gaming.nix @@ -22,15 +22,17 @@ in programs.steam = { enable = true; - gamescopeSession.enable = true; # Adds a steam entry to the login manager extest.enable = true; localNetworkGameTransfers.openFirewall = true; extraCompatPackages = with pkgs; [ proton-ge-bin ]; }; + programs.gamemode.enable = true; + environment.systemPackages = with pkgs; [ lutris mangohud + heroic ]; }; } diff --git a/secrets/freshrss-default-password.age b/secrets/freshrss-default-password.age new file mode 100644 index 0000000..cb0e10d --- /dev/null +++ b/secrets/freshrss-default-password.age @@ -0,0 +1,7 @@ +age-encryption.org/v1 +-> ssh-ed25519 a1hgwg jQShep0qAznVUIKf3/tZk3Ax7xdIG55K/vo/WgTMqxo +822i7jJOTvRKh07Gt2ku3wKARZ60d3SZYiQ7sXh6Y9Q +-> ssh-ed25519 WcjW5A Q6DSl3XFuXmIXtk+gdpDYjQILvc9IvVB8xaTw/lDnwM +c9nOjNf/Wz97hDQFgbr3hoyuy9NGVYTDiFq79cmpGM8 +--- QEJe1HN6nbQdjHAhL4DRJvcc7WJsfSMddYJhkKMSOKE +˯i!O@2+Z¨0iʹnunϥNwe%5C D;{?FKQxA,I5 |NzX/hzL \ No newline at end of file diff --git a/secrets/secrets.nix b/secrets/secrets.nix index a1ab819..19f9a51 100644 --- a/secrets/secrets.nix +++ b/secrets/secrets.nix @@ -20,4 +20,8 @@ in raptus ny ]; + "freshrss-default-password.age".publicKeys = [ + shan + ny + ]; }