Compare commits

...

2 Commits

Author SHA1 Message Date
Sebastien Bourdeauducq b47e660c2f enable homu 2019-05-02 13:54:21 +08:00
Sebastien Bourdeauducq ad2fe47688 homu: do not put configuration file in nix
* issue with multiline string values
* slight security problem
2019-05-02 13:53:34 +08:00
2 changed files with 14 additions and 48 deletions

View File

@ -205,7 +205,7 @@ ACTION=="add", SUBSYSTEM=="tty", \
"lab.m-labs.hk" = {
addSSL = true;
useACMEHost = "nixbld.m-labs.hk";
locations."/".proxyPass = "http://192.168.1.100";
locations."/homu/".proxyPass = "http://127.0.0.1:54856/";
};
"nixbld.m-labs.hk" = {
forceSSL = true;
@ -245,16 +245,10 @@ ACTION=="add", SUBSYSTEM=="tty", \
};
};
# services.homu = {
# enable = true;
# # See https://github.com/servo/homu/blob/master/cfg.sample.toml
# config = {
# max_priority = 9001;
# github = {
# access_token = "...";
# };
# };
# };
services.homu = {
enable = true;
config = "/etc/nixos/secret/homu.toml";
};
# This value determines the NixOS release with which your system is to be
# compatible, in order to avoid breaking some software such as database

View File

@ -2,40 +2,7 @@
with lib;
let
homu = pkgs.callPackage ./pkg.nix {};
toToml = key: value:
let valueString =
if builtins.isString value
then "\"" + (builtins.replaceStrings ["\"" "\\"] ["\\\"" "\\\\"] value) + "\""
else toString value;
in "${key} = ${valueString}\n";
defaultConfig = {
db = {
file = "/var/db/homu/main.db";
};
};
cfg = config.services.homu;
homuConfig = defaultConfig // cfg.config;
configFilter = f:
filterAttrs (key: value: f value) homuConfig;
topLevelConfig =
configFilter (value: ! builtins.isAttrs value);
configSections =
configFilter (value: builtins.isAttrs value);
configFile = builtins.toFile "config.toml" (
builtins.concatStringsSep "" (
(attrsets.mapAttrsToList toToml topLevelConfig) ++
(builtins.concatLists (attrsets.mapAttrsToList
(sectionName: sectionConfig:
[ "[${sectionName}]\n" ] ++
(attrsets.mapAttrsToList toToml sectionConfig)
) configSections)
))
);
dbDir = dirOf homuConfig.db.file;
in
{
@ -45,16 +12,21 @@ in
default = false;
description = "Enable the bot";
};
dbDir = mkOption {
type = types.str;
default = "/var/db/homu";
description = "Path to the database file (use the same path in config.toml)";
};
config = mkOption {
description = "Structured data for config.toml";
type = with types; attrsOf unspecified;
description = "Location of config.toml";
type = types.str;
};
};
config = mkIf cfg.enable {
users.users.homu = {
group = "homu";
home = dbDir;
home = cfg.dbDir;
createHome = true;
};
users.groups.homu = {};
@ -65,7 +37,7 @@ in
after = [ "network.target" ];
serviceConfig = {
Type = "simple";
ExecStart = "${homu}/bin/homu -c ${configFile}";
ExecStart = "${homu}/bin/homu -c ${cfg.config}";
Restart = "always";
RestartSec = "5sec";