modularization of all servers donion rings

2024-06-15 00:27:14 -06:00
parent add0490415
commit fbf81f60ce
22 changed files with 618 additions and 521 deletions
--- a/modules/servers/vaultwarden.nix
+++ b/modules/servers/vaultwarden.nix
@@ -0,0 +1,31 @@
+{ lib, config, pkgs, proxyReverse, ... }: {
+  options.my.servers.vaultwarden.enable = lib.mkEnableOption "enable";
+  config = lib.mkIf config.my.servers.vaultwarden.enable {
+    services = {
+      vaultwarden = {
+        enable = true;
+        dbBackend = "postgresql";
+        package = pkgs.vaultwarden;
+        environmentFile = "/var/lib/vaultwarden.env";
+        config = {
+          ROCKET_ADDRESS = "${config.my.localhost}";
+          ROCKET_PORT = 8222;
+          WEBSOCKET_PORT = 8333;
+          DATABASE_URL =
+            "postgresql:///vaultwarden?host=${config.my.postgresSocket}";
+          ENABLE_DB_WAL = false;
+          WEBSOCKET_ENABLED = true;
+          SHOW_PASSWORD_HINT = false;
+          SIGNUPS_ALLOWED = false;
+          EXTENDED_LOGGING = true;
+          LOG_LEVEL = "warn";
+        };
+      };
+      nginx = {
+        enable = true;
+        virtualHosts."vault.${config.my.domain}" =
+          proxyReverse config.services.vaultwarden.config.ROCKET_PORT // { };
+      };
+    };
+  };
+}