24fdeddc0a
GitOrigin-RevId: 2768c7d042a37de65bb1b5b3268fc987e534c49d
130 lines
4.4 KiB
Nix
130 lines
4.4 KiB
Nix
{ config, options, lib, pkgs, ... }:
|
|
|
|
let
|
|
cfg = config.services.nextcloud.notify_push;
|
|
cfgN = config.services.nextcloud;
|
|
in
|
|
{
|
|
options.services.nextcloud.notify_push = {
|
|
enable = lib.mkEnableOption "Notify push";
|
|
|
|
package = lib.mkOption {
|
|
type = lib.types.package;
|
|
default = pkgs.nextcloud-notify_push;
|
|
defaultText = lib.literalMD "pkgs.nextcloud-notify_push";
|
|
description = "Which package to use for notify_push";
|
|
};
|
|
|
|
socketPath = lib.mkOption {
|
|
type = lib.types.str;
|
|
default = "/run/nextcloud-notify_push/sock";
|
|
description = "Socket path to use for notify_push";
|
|
};
|
|
|
|
logLevel = lib.mkOption {
|
|
type = lib.types.enum [ "error" "warn" "info" "debug" "trace" ];
|
|
default = "error";
|
|
description = "Log level";
|
|
};
|
|
|
|
bendDomainToLocalhost = lib.mkOption {
|
|
type = lib.types.bool;
|
|
default = false;
|
|
description = ''
|
|
Whether to add an entry to `/etc/hosts` for the configured nextcloud domain to point to `localhost` and add `localhost `to nextcloud's `trusted_proxies` config option.
|
|
|
|
This is useful when nextcloud's domain is not a static IP address and when the reverse proxy cannot be bypassed because the backend connection is done via unix socket.
|
|
'';
|
|
};
|
|
} // (
|
|
lib.genAttrs [
|
|
"dbtype"
|
|
"dbname"
|
|
"dbuser"
|
|
"dbpassFile"
|
|
"dbhost"
|
|
"dbport"
|
|
"dbtableprefix"
|
|
] (
|
|
opt: options.services.nextcloud.config.${opt} // {
|
|
default = config.services.nextcloud.config.${opt};
|
|
defaultText = "config.services.nextcloud.config.${opt}";
|
|
}
|
|
)
|
|
);
|
|
|
|
config = lib.mkIf cfg.enable {
|
|
systemd.services.nextcloud-notify_push = let
|
|
nextcloudUrl = "http${lib.optionalString cfgN.https "s"}://${cfgN.hostName}";
|
|
in {
|
|
description = "Push daemon for Nextcloud clients";
|
|
documentation = [ "https://github.com/nextcloud/notify_push" ];
|
|
after = [
|
|
"phpfpm-nextcloud.service"
|
|
"redis-nextcloud.service"
|
|
];
|
|
wantedBy = [ "multi-user.target" ];
|
|
environment = {
|
|
NEXTCLOUD_URL = nextcloudUrl;
|
|
SOCKET_PATH = cfg.socketPath;
|
|
DATABASE_PREFIX = cfg.dbtableprefix;
|
|
LOG = cfg.logLevel;
|
|
};
|
|
postStart = ''
|
|
${cfgN.occ}/bin/nextcloud-occ notify_push:setup ${nextcloudUrl}/push
|
|
'';
|
|
script = let
|
|
dbType = if cfg.dbtype == "pgsql" then "postgresql" else cfg.dbtype;
|
|
dbUser = lib.optionalString (cfg.dbuser != null) cfg.dbuser;
|
|
dbPass = lib.optionalString (cfg.dbpassFile != null) ":$DATABASE_PASSWORD";
|
|
dbHostHasPrefix = prefix: lib.hasPrefix prefix (toString cfg.dbhost);
|
|
isPostgresql = dbType == "postgresql";
|
|
isMysql = dbType == "mysql";
|
|
isSocket = (isPostgresql && dbHostHasPrefix "/") || (isMysql && dbHostHasPrefix "localhost:/");
|
|
dbHost = lib.optionalString (cfg.dbhost != null) (if
|
|
isSocket then
|
|
lib.optionalString isMysql "@localhost"
|
|
else
|
|
"@${cfg.dbhost}");
|
|
dbOpts = lib.optionalString (cfg.dbhost != null && isSocket) (
|
|
if isPostgresql then "?host=${cfg.dbhost}" else
|
|
if isMysql then "?socket=${lib.removePrefix "localhost:" cfg.dbhost}" else throw "unsupported dbtype"
|
|
);
|
|
dbName = lib.optionalString (cfg.dbname != null) "/${cfg.dbname}";
|
|
dbUrl = "${dbType}://${dbUser}${dbPass}${dbHost}${dbName}${dbOpts}";
|
|
in lib.optionalString (dbPass != "") ''
|
|
export DATABASE_PASSWORD="$(<"${cfg.dbpassFile}")"
|
|
'' + ''
|
|
export DATABASE_URL="${dbUrl}"
|
|
exec ${cfg.package}/bin/notify_push '${cfgN.datadir}/config/config.php'
|
|
'';
|
|
serviceConfig = {
|
|
User = "nextcloud";
|
|
Group = "nextcloud";
|
|
RuntimeDirectory = [ "nextcloud-notify_push" ];
|
|
Restart = "on-failure";
|
|
RestartSec = "5s";
|
|
Type = "notify";
|
|
};
|
|
};
|
|
|
|
networking.hosts = lib.mkIf cfg.bendDomainToLocalhost {
|
|
"127.0.0.1" = [ cfgN.hostName ];
|
|
"::1" = [ cfgN.hostName ];
|
|
};
|
|
|
|
services = lib.mkMerge [
|
|
{
|
|
nginx.virtualHosts.${cfgN.hostName}.locations."^~ /push/" = {
|
|
proxyPass = "http://unix:${cfg.socketPath}";
|
|
proxyWebsockets = true;
|
|
recommendedProxySettings = true;
|
|
};
|
|
}
|
|
|
|
(lib.mkIf cfg.bendDomainToLocalhost {
|
|
nextcloud.settings.trusted_proxies = [ "127.0.0.1" "::1" ];
|
|
})
|
|
];
|
|
};
|
|
}
|