From a615095f3853486fb43ebe800a13c13f74f725d3 Mon Sep 17 00:00:00 2001 From: Felix Albrigtsen Date: Wed, 1 May 2024 16:08:43 +0200 Subject: [PATCH] voyager: add service podgrab. add user amalieem --- hosts/voyager/configuration.nix | 9 +++++++++ hosts/voyager/services/podgrab.nix | 22 ++++++++++++++++++++++ secrets/voyager/voyager.yaml | 6 ++++-- 3 files changed, 35 insertions(+), 2 deletions(-) create mode 100644 hosts/voyager/services/podgrab.nix diff --git a/hosts/voyager/configuration.nix b/hosts/voyager/configuration.nix index ef5546b..b933aee 100644 --- a/hosts/voyager/configuration.nix +++ b/hosts/voyager/configuration.nix @@ -17,6 +17,7 @@ ./services/kanidm.nix ./services/nextcloud.nix ./services/nginx + ./services/podgrab.nix ./services/postgres.nix ./services/timemachine.nix ./services/transmission.nix @@ -44,6 +45,14 @@ virtualisation.docker.enable = true; virtualisation.oci-containers.backend = "docker"; + users.users."amalieem" = { + isNormalUser = true; + home = "/home/amalieem"; + openssh.authorizedKeys.keys = [ + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAID7e+BAoXIFmTeeBYAVImQAcyx6SCoYCErA7h16OGL70 amalieem@wentworth" + ]; + }; + system.stateVersion = "22.11"; } diff --git a/hosts/voyager/services/podgrab.nix b/hosts/voyager/services/podgrab.nix new file mode 100644 index 0000000..9f5f879 --- /dev/null +++ b/hosts/voyager/services/podgrab.nix @@ -0,0 +1,22 @@ +{ config, pkgs, lib, ... }: +let + cfg = config.services.podgrab; + domain = "podgrab.home.feal.no"; +in { + sops.secrets."podgrab/password" = { }; + + services.podgrab = { + enable = true; + port = 5104; + passwordFile = config.sops.secrets."podgrab/password".path; + }; + + services.nginx.virtualHosts.${domain} = { + locations."/".proxyPass = "http://localhost:${toString cfg.port}"; + }; + + fileSystems."/tank/media/jellyfin/Podcasts" = { + device = "/var/lib/podgrab/data"; + options = [ "bind "]; + }; +} diff --git a/secrets/voyager/voyager.yaml b/secrets/voyager/voyager.yaml index c56d78b..93f49d3 100644 --- a/secrets/voyager/voyager.yaml +++ b/secrets/voyager/voyager.yaml @@ -15,6 +15,8 @@ nextcloud: borg: transmission: ENC[AES256_GCM,data:VGP23BjX6rjMbcEMA6O7UEX6,iv:C0ehtDSO0eMkIYbwi9wYAKncOBrNCiJB4S5tJ1rxctI=,tag:RNcGwihAxOwCt3XOSoCvfw==,type:str] postgres: ENC[AES256_GCM,data:nA+Ga56rG8XippMmHsOLEik=,iv:41llHBWEU7ESiUetJC/SkcjHG+beXs/ur8QTmxDGFE8=,tag:92n88ZtrDQWz0gYZmuWD8g==,type:str] +podgrab: + password: ENC[AES256_GCM,data:mH/AZfmUCaUVH9km/dY9+AsmJQ==,iv:1/L0tslY7senVgfi+1g7ijcP3dt9cI4ecyGpkgF0OMo=,tag:fUG+lk7kgI5R9OZyCYP0nQ==,type:str] sops: kms: [] gcp_kms: [] @@ -48,8 +50,8 @@ sops: NENEM2VLRDBzTWM0ckdPVThaeE0xL2MKTAvsDKgaoj0Fz9CoNbP6s1kROlDbbXtB 4rFRGN+WZJrBioz5nN4kR7mVFKa4w6z6Pu3D5WLyK7UQQkZJ64avdw== -----END AGE ENCRYPTED FILE----- - lastmodified: "2024-03-07T23:59:51Z" - mac: ENC[AES256_GCM,data:tRsHevzZTnfIqjqJI2lqbUCoFrNq8Hb7hyZKt41A1XUrd54BiqHhhPqXwp2HN7KmdxXWdnXBRGZEkNVfocGbi2gFV5IhW1oh+VRMnBLvDriqDbj6nh87wZ0OEZNLDuz/MjMaL3UIgMNzxFnjM47QNgt9oj9fXenfuFYitlwCw58=,iv:nL5vhy370eqVEHRk6jrm1mjPcHet0RN9txD9lTMi0Qo=,tag:4TvH2N8jm+AJLr/Pp6jgOA==,type:str] + lastmodified: "2024-04-29T10:10:29Z" + mac: ENC[AES256_GCM,data:hfiomMGmIvm2HFxrvRXB4lIjOpaMlP//35PT2AG9PKqR4MIuBR9jZDHoGUnddjfESNH7++YUvND7Qafxax8AMiCYEhUUfgn2rkO/ycVvI8y9cIQQv8OMzmPZF82Uu9loWoq4dnR/kHkQKWv7XhoGzqI4Z/ObfxESwPqSr6mAlsI=,iv:VnY/WLmVwrSt0jHs0uDzr8iP4BYOSlwLGn0g4QYnxIo=,tag:r+8hvmFS7aIdEvepKQV33Q==,type:str] pgp: [] unencrypted_suffix: _unencrypted version: 3.8.1