mirrors/nix-darwin
mirrors/nix-darwin
1
0
Fork 0
mirror of https://github.com/LnL7/nix-darwin.git synced 2025-03-31 04:04:45 +00:00
Code Activity
nix-darwin/modules/services/ofborg/default.nix
Emily e65131e69c treewide: convert all option docs to Markdown 
This process was automated by [my fork of `nix-doc-munge`]; thanks
to @pennae for writing this tool! It automatically checks that the
resulting documentation doesn't change, although my fork loosens
this a little to ignore some irrelevant whitespace and typographical
differences.

As of this commit there is no DocBook remaining in the options
documentation.

You can play along at home if you want to reproduce this commit:

    $ NIX_PATH=nixpkgs=flake:nixpkgs/c1bca7fe84c646cfd4ebf3482c0e6317a0b13f22 \
      nix shell nixpkgs#coreutils \
      -c find . -name '*.nix' \
      -exec nix run github:emilazy/nix-doc-munge/0a7190f600027bf7baf6cb7139e4d69ac2f51062 \
      {} +

[my fork of `nix-doc-munge`]: https://github.com/emilazy/nix-doc-munge
2023-06-24 10:48:55 +01:00

111 lines
3.4 KiB
Nix
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

{ config, lib, pkgs, ... }:
with lib;
let
cfg = config.services.ofborg;
user = config.users.users.ofborg;
in
{
options = {
services.ofborg.enable = mkOption {
type = types.bool;
default = false;
description = lib.mdDoc "Whether to enable the ofborg builder service.";
};
services.ofborg.package = mkOption {
type = types.package;
example = literalExpression "pkgs.ofborg";
description = lib.mdDoc ''
This option specifies the ofborg package to use. eg.
(import <ofborg> {}).ofborg.rs
$ nix-channel --add https://github.com/NixOS/ofborg/archive/released.tar.gz ofborg
$ nix-channel --update
'';
};
services.ofborg.configFile = mkOption {
type = types.path;
description = lib.mdDoc ''
Configuration file to use for ofborg.
WARNING Don't use a path literal or derivation for this,
that would expose credentials in the store making them world readable.
'';
};
services.ofborg.logFile = mkOption {
type = types.path;
default = "/var/log/ofborg.log";
description = lib.mdDoc "Whether to enable the khd window manager.";
};
};
config = mkIf cfg.enable {
assertions = [
{ assertion = elem "ofborg" config.users.knownGroups; message = "set users.knownGroups to enable ofborg group"; }
{ assertion = elem "ofborg" config.users.knownUsers; message = "set users.knownUsers to enable ofborg user"; }
];
warnings = mkIf (isDerivation cfg.configFile) [
"services.ofborg.configFile is a derivation, credentials will be world readable"
];
services.ofborg.configFile = mkDefault "${user.home}/config.json";
launchd.daemons.ofborg = {
script = ''
git config --global user.email "ofborg@example.com"
git config --global user.name "OfBorg"
exec ${cfg.package}/bin/builder "${cfg.configFile}"
'';
path = [ config.nix.package pkgs.bash pkgs.coreutils pkgs.curl pkgs.git ];
environment =
{ RUST_BACKTRACE = "1";
NIX_SSL_CERT_FILE = "${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt";
};
serviceConfig.KeepAlive = true;
serviceConfig.StandardErrorPath = cfg.logFile;
serviceConfig.StandardOutPath = cfg.logFile;
serviceConfig.GroupName = "ofborg";
serviceConfig.UserName = "ofborg";
serviceConfig.WorkingDirectory = user.home;
};
users.users.ofborg.uid = mkDefault 531;
users.users.ofborg.gid = mkDefault config.users.groups.ofborg.gid;
users.users.ofborg.home = mkDefault "/var/lib/ofborg";
users.users.ofborg.shell = "/bin/bash";
users.users.ofborg.description = "OfBorg service user";
users.groups.ofborg.gid = mkDefault 531;
users.groups.ofborg.description = "Nix group for OfBorg service";
# FIXME: create logfiles automatically if defined.
system.activationScripts.preActivation.text = ''
mkdir -p '${user.home}'
touch '${cfg.logFile}'
chown ${toString user.uid}:${toString user.gid} '${user.home}' '${cfg.logFile}'
'';
system.activationScripts.postActivation.text = ''
if ! test -f '${cfg.configFile}'; then
echo >&2 "warning: ofborg config \"${cfg.configFile}\" does not exist"
fi
chmod 600 '${cfg.configFile}'
chown ${toString user.uid}:${toString user.gid} '${cfg.configFile}'
'';
};
}
View git blame Copy permalink