2023-07-06 16:58:43 +02:00
|
|
|
{
|
|
|
|
|
config,
|
|
|
|
|
pkgs,
|
|
|
|
|
...
|
|
|
|
|
}: {
|
|
|
|
|
services.wakapi = {
|
|
|
|
|
enable = true;
|
|
|
|
|
package = pkgs.unstable.wakapi;
|
|
|
|
|
|
|
|
|
|
domain = "wakapi.winston.sh";
|
|
|
|
|
port = 15912;
|
|
|
|
|
nginx.enable = true;
|
|
|
|
|
passwordSaltFile = config.age.secrets."services/wakapi/password-salt.env".path;
|
|
|
|
|
settings = {
|
|
|
|
|
app.avatar_url_template = "https://www.gravatar.com/avatar/{email_hash}.png";
|
2023-07-06 20:15:39 +02:00
|
|
|
mail.enabled = false;
|
|
|
|
|
security = {
|
|
|
|
|
allow_signup = false;
|
|
|
|
|
disable_frontpage = true;
|
|
|
|
|
};
|
2023-07-06 16:58:43 +02:00
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
services.nginx.virtualHosts.${config.services.wakapi.domain} = {
|
|
|
|
|
forceSSL = true;
|
|
|
|
|
enableACME = false;
|
|
|
|
|
useACMEHost = "winston.sh";
|
2024-09-13 02:28:10 +02:00
|
|
|
|
|
|
|
|
extraConfig =
|
|
|
|
|
# nginx
|
|
|
|
|
''
|
|
|
|
|
access_log /var/log/nginx/wakapi.access.log combined_geoip;
|
|
|
|
|
'';
|
2023-07-06 16:58:43 +02:00
|
|
|
};
|
|
|
|
|
|
2023-07-06 20:35:47 +02:00
|
|
|
# for agenix owner permissions
|
2023-07-06 16:58:43 +02:00
|
|
|
age.secrets."services/wakapi/password-salt.env".owner = "wakapi";
|
2024-09-13 02:28:10 +02:00
|
|
|
users = {
|
|
|
|
|
groups.wakapi = {};
|
|
|
|
|
users.wakapi = {
|
|
|
|
|
isSystemUser = true;
|
|
|
|
|
group = "wakapi";
|
|
|
|
|
};
|
|
|
|
|
};
|
2023-07-06 16:58:43 +02:00
|
|
|
}
|
