fsagbuya
/
it-infra
forked from M-Labs/it-infra
1
0
Fork 0
Code Pull Requests Activity

aux: add backupdl

This commit is contained in:
Sebastien Bourdeauducq 2022-09-24 09:07:55 +08:00
parent a3edbfa316
commit 74f56f7ccc
2 changed files with 57 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

53
aux-etc-nixos/backupdl-module.nix Normal file
View File

@ -0,0 +1,53 @@
{ config, pkgs, lib, ... }:
with lib;
let
makeBackup = pkgs.writeScript "make-backupdl" ''
#!${pkgs.bash}/bin/bash
set -e
export PATH=${pkgs.rsync}/bin:${pkgs.openssh}/bin
rsync --ignore-existing -av nixbld.m-labs.hk:/home/backupdl /var/lib/backupdl
'';
cfg = config.services.backupdl;
in
{
options.services.backupdl = {
enable = mkOption {
type = types.bool;
default = false;
description = "Enable backups";
};
};
config = mkIf cfg.enable {
systemd.services.backupdl = {
description = "Nixbld backups download";
serviceConfig = {
Type = "oneshot";
User = "backupdl";
Group = "backupdl";
ExecStart = "${makeBackup}";
};
};
users.users.backupdl = {
name = "backupdl";
group = "backupdl";
description = "Nixbld backups download";
isSystemUser = true;
createHome = true;
home = "/var/lib/backupdl";
useDefaultShell = true;
};
users.extraGroups.backupdl = {};
systemd.timers.backupdl = {
description = "Nixbld backups download";
wantedBy = [ "timers.target" ];
timerConfig.OnCalendar = "*-*-* 18:00:00";
};
};
}

9
aux-etc-nixos/configuration.nix
View File

@ -7,8 +7,9 @@ let
in in
{ {
imports = imports =
[ # Include the results of the hardware scan. [
./hardware-configuration.nix ./hardware-configuration.nix
./backupdl-module.nix
]; ];
boot.loader.grub.enable = true; boot.loader.grub.enable = true;
@ -141,10 +142,6 @@ in
]; ];
shell = pkgs.fish; shell = pkgs.fish;
}; };
users.users.backupdl = {
isNormalUser = true;
shell = pkgs.fish;
};
documentation.enable = false; documentation.enable = false;
environment.systemPackages = with pkgs; [ environment.systemPackages = with pkgs; [
@ -167,6 +164,8 @@ in
StreamLocalBindUnlink yes StreamLocalBindUnlink yes
''; '';
services.backupdl.enable = true;
nix.binaryCachePublicKeys = ["nixbld.m-labs.hk-1:5aSRVA5b320xbNvu30tqxVPXpld73bhtOeH6uAjRyHc="]; nix.binaryCachePublicKeys = ["nixbld.m-labs.hk-1:5aSRVA5b320xbNvu30tqxVPXpld73bhtOeH6uAjRyHc="];
nix.binaryCaches = ["https://nixbld.m-labs.hk" "https://cache.nixos.org"]; nix.binaryCaches = ["https://nixbld.m-labs.hk" "https://cache.nixos.org"];
nix.trustedUsers = ["sb"]; nix.trustedUsers = ["sb"];