mirror of
https://github.com/CHN-beta/nixos.git
synced 2024-10-24 16:18:44 +08:00
44 lines
1.6 KiB
Nix
44 lines
1.6 KiB
Nix
inputs:
|
|
{
|
|
options.nixos.services.redis = let inherit (inputs.lib) mkOption types; in
|
|
{
|
|
instances = mkOption
|
|
{
|
|
type = types.attrsOf (types.submodule (submoduleInputs: { options =
|
|
{
|
|
user = mkOption { type = types.nonEmptyStr; default = submoduleInputs.config._module.args.name; };
|
|
passwordFile = mkOption { type = types.nullOr types.nonEmptyStr; default = null; };
|
|
port = mkOption { type = types.ints.unsigned; };
|
|
};}));
|
|
default = {};
|
|
};
|
|
};
|
|
config = let inherit (inputs.config.nixos.services) redis; in
|
|
{
|
|
services.redis.servers = builtins.listToAttrs (builtins.map
|
|
(server:
|
|
{
|
|
inherit (server) name;
|
|
value =
|
|
{
|
|
enable = true;
|
|
bind = null;
|
|
port = server.value.port;
|
|
user = server.value.user;
|
|
# unixSocket = null; # bug
|
|
unixSocketPerm = 600;
|
|
requirePassFile =
|
|
if server.value.passwordFile == null then inputs.config.sops.secrets."redis/${server.name}".path
|
|
else server.value.passwordFile;
|
|
};
|
|
})
|
|
(inputs.localLib.attrsToList redis.instances));
|
|
sops.secrets = builtins.listToAttrs (builtins.map
|
|
(server: { name = "redis/${server.name}"; value.owner = inputs.config.users.users.${server.value.user}.name; })
|
|
(builtins.filter (server: server.value.passwordFile == null) (inputs.localLib.attrsToList redis.instances)));
|
|
systemd.services = builtins.listToAttrs (builtins.map
|
|
(server: { name = "redis-${server}"; value.serviceConfig.TimeoutStartSec = 0; })
|
|
(builtins.attrNames redis.instances));
|
|
};
|
|
}
|