diff --git a/machine/vps-arm/configuration.nix b/machine/vps-arm/configuration.nix index 05fa727..20534f5 100644 --- a/machine/vps-arm/configuration.nix +++ b/machine/vps-arm/configuration.nix @@ -35,7 +35,7 @@ goaccess-htpasswd = { owner = config.services.nginx.user; group = config.services.nginx.group; - mode = "0440" + mode = "0440"; }; frigate-htpasswd = { @@ -56,7 +56,7 @@ gitea-password = { owner = config.services.gitea.user; group = config.services.gitea.group; - mode = "0440" + mode = "0440"; }; }; }; diff --git a/services/firefox-syncserver.nix b/services/firefox-syncserver.nix index 3b55ff5..2c112e9 100644 --- a/services/firefox-syncserver.nix +++ b/services/firefox-syncserver.nix @@ -4,43 +4,29 @@ pkgs, ... }: { - # environment = { - # persistence."/persist" = { - # directories = [ - # "/var/lib/immich" - # "/var/lib/redis-immich" - # ]; - # }; - # }; + environment = { + persistence."/persist" = { + directories = [ + "/var/lib/mysql" + ]; + }; + }; + + users = { + groups.firefox-syncserver = {}; + users.firefox-syncserver = { + isSystemUser = true; + group = "firefox-syncserver"; + extraGroups = [config.users.groups.keys.name]; + }; + }; services = { - # nginx = { - # virtualHosts = { - # "firefox.szczepan.ski" = { - # forceSSL = true; - # enableACME = true; - # locations = {"/" = {proxyPass = "http://[::1]:2283/";};}; - # }; - # }; - # }; - - # postgresql = { - # enable = true; - # ensureDatabases = [ - # config.services.nextcloud.config.dbname - # ]; - # ensureUsers = [ - # { - # name = config.services..config.dbuser; - # ensureDBOwnership = true; - # # ensurePermissions."DATABASE ${config.services.gitea.database.name}" = "ALL PRIVILEGEnS"; - # } - # ]; - # }; - + mysql.package = pkgs.mariadb; firefox-syncserver = { enable = true; secrets = config.sops.secrets."syncserver-secrets".path; + logLevel = "trace"; singleNode = { enable = true; hostname = "firefox-sync.szczepan.ski";