yadunut/clan-core
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

docs: Improve iwd, vaultwarden, dyndns, disk-encryption and installer documentation

Browse Source
This commit is contained in:
Qubasa
2024-08-24 13:10:22 +02:00
parent aba4a1494f
commit ca60743b2b
6 changed files with 237 additions and 181 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
clanModules/dyndns/README.md
View File

@@ -2,5 +2,5 @@
description = "A dynamic DNS service to update domain IPs"
---
To understand the possible options that can be set visit the documentation of [ddns-updater](https://github.com/qdm12/ddns-updater?tab=readme-ov-file#versioned-documentation)

22
clanModules/dyndns/default.nix
View File

@@ -58,18 +58,6 @@ let
in
{
options.clan.${name} = {
user = lib.mkOption {
type = lib.types.str;
default = name;
description = "User to run the service as";
};
group = lib.mkOption {
type = lib.types.str;
default = name;
description = "Group to run the service as";
};
server = {
enable = lib.mkEnableOption "dyndns webserver";
domain = lib.mkOption {
@@ -150,9 +138,9 @@ in
(lib.mkIf (cfg.settings != { }) {
clan.core.facts.services = lib.mapAttrs' secret_generator cfg.settings;
users.groups.${cfg.group} = { };
users.users.${cfg.user} = {
group = cfg.group;
users.groups.${name} = { };
users.users.${name} = {
group = name;
isSystemUser = true;
description = "User for ${name} service";
home = "/var/lib/${name}";
@@ -236,8 +224,8 @@ in
ExecStartPre = lib.getExe pyscript;
ExecStart = lib.getExe pkgs.ddns-updater;
LoadCredential = lib.mapAttrsToList (_: opt: "${secret_id opt}:${secret_path opt}") cfg.settings;
User = cfg.user;
Group = cfg.group;
User = name;
Group = name;
NoNewPrivileges = true;
PrivateTmp = true;
ProtectSystem = "strict";