TheWanderingCrow/CrOS
1
0
Fork 0
mirror of https://github.com/TheWanderingCrow/CrOS.git synced 2026-01-11 17:54:08 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

add attic

Browse source
This commit is contained in:
TheWanderingCrow 2025-02-09 00:10:02 -05:00
parent 42506c8dfb
commit 374964c7e5
2 changed files with 39 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

38
modules/users/overseer/services/attic.nix Normal file
View file

@ -0,0 +1,38 @@
{
lib,
config,
...
}:
lib.mkIf config.user.overseer.enable {
sops = {
secrets."attic/server_token" = {};
secrets."aws/access_key" = {};
secrets."aws/secret_key" = {};
secrets."aws/region" = {};
templates."attic-env".content = ''
ATTIC_SERVER_TOKEN_RS256_SECRET_BASE64=${config.sops.placeholder."attic/server_token"}
AWS_ACCESS_KEY_ID=${config.sops.placeholder."aws/access_key"}
AWS_SECRET_ACCESS_KEY=${config.sops.placeholder."aws/secret_key"}
'';
};
services.atticd = {
enable = true;
mode = "monolithic";
environmentFile = config.sops.templates."attic-env".path;
settings = {
listen = "[::]:8080";
jwt = {};
chunking = {
nar-size-threshold = 64 * 1024; # 64 KiB
min-size = 16 * 1024; # 16 KiB
avg-size = 64 * 1024; # 64 KiB
max-size = 256 * 1024; # 256 KiB
};
storage = {
type = "s3";
region = builtins.readFile config.sops.secrets."aws/region".path;
bucket = "wce-20250209044958802100000001";
};
};
};
}

1
modules/users/overseer/services/default.nix
View file

@ -5,5 +5,6 @@
./homepage.nix
./bookstack.nix
./grocy.nix
./attic.nix
];
}