zoey/zoeys.computer
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
zoeys.computer/flake.nix

331 lines
12 KiB
Nix
Raw Normal View History

add links
2024-10-21 13:57:31 -04:00
{
inputs = {
# nixpkgs.url = "github:NixOS/nixpkgs/nixpkgs-unstable";
systems.url = "github:nix-systems/default";
flake-parts.url = "github:hercules-ci/flake-parts";
# Lexical is an alternative LSP server. There are several options for Elixir
# LSP. See https://gist.github.com/Nezteb/dc63f1d5ad9d88907dd103da2ca000b1
lexical.url = "github:lexical-lsp/lexical";
# Use process-compose to manage background processes during development
process-compose-flake.url = "github:Platonic-Systems/process-compose-flake";
};
outputs = {
self,
nixpkgs,
systems,
flake-parts,
...
} @ inputs: let
# Set the Erlang version
init v0
2024-10-21 19:20:35 -04:00
erlangVersion = "erlang";
add links
2024-10-21 13:57:31 -04:00
# Set the Elixir version
init v0
2024-10-21 19:20:35 -04:00
elixirVersion = "elixir";
add links
2024-10-21 13:57:31 -04:00
in
flake-parts.lib.mkFlake {inherit inputs;} {
systems = import systems;
imports = [inputs.process-compose-flake.flakeModule];
init v0
2024-10-21 19:20:35 -04:00
flake = {
nixosModules.default = {
config,
lib,
pkgs,
...
}:
with lib; let
cfg = config.sites.zoeycomputer;
in {
options.sites.zoeycomputer = {
enable = mkEnableOption "Enables the zoey computer";
domain = mkOption rec {
type = types.str;
default = "zoeys.computer";
example = default;
description = "The domain name for the website";
};
ssl = mkOption rec {
type = types.bool;
default = true;
example = default;
description = "Whether to enable SSL on the domain or not";
};
phx = {
port = mkOption rec {
type = types.int;
default = 4000;
example = default;
description = "What port should phoenix run on";
};
package = mkOption rec {
change to package (was derivation)
2024-10-21 19:31:47 -04:00
type = types.package;
init v0
2024-10-21 19:20:35 -04:00
default = self.packages.${pkgs.system}.default;
example = default;
description = "The phoenix package containing the application";
};
add dbUrl
2024-10-21 19:52:48 -04:00
secret_key_file = mkOption {
type = types.string;
example = "/var/lib/skey";
description = "The Secrert key for Phoenix";
};
change db
2024-10-21 20:07:13 -04:00
database = {
name = mkOption rec {
type = types.str;
changess...
2024-10-21 20:37:53 -04:00
default = "zoeyscomputer";
change db
2024-10-21 20:07:13 -04:00
example = default;
description = "Database name";
};
user = mkOption rec {
type = types.str;
default = "zoeyscomputer";
example = default;
description = "Database user";
};
passwordFile = mkOption {
type = types.nullOr types.path;
default = null;
example = "/run/secrets/db_password";
description = "File containing the database password";
};
add db host
2024-10-21 20:07:59 -04:00
host = mkOption rec {
type = types.str;
default = "localhost";
example = default;
description = "Database host";
};
add dbUrl
2024-10-21 19:52:48 -04:00
};
init v0
2024-10-21 19:20:35 -04:00
enableServer = mkOption rec {
type = types.bool;
default = true;
example = default;
description = "Enable Phoenix Server, why would you not enable this?";
};
};
};
config = mkIf cfg.enable {
services.nginx.virtualHosts.${cfg.domain} = {
forceSSL = cfg.ssl;
enableACME = cfg.ssl;
really change to str
2024-10-21 19:30:38 -04:00
locations."/".proxyPass = "http://127.0.0.1:${toString cfg.phx.port}";
init v0
2024-10-21 19:20:35 -04:00
};
group changes
2024-10-21 20:39:56 -04:00
users.users."zoeyscomputer-phx" = {
isSystemUser = true;
//
2024-10-21 20:40:48 -04:00
group = "zoeyscomputer-phx";
group changes
2024-10-21 20:39:56 -04:00
};
add users
2024-10-21 20:38:35 -04:00
users.groups."zoeyscomputer-phx" = {};
changess...
2024-10-21 20:37:53 -04:00
# Create a oneshot service to set up the database user with password
systemd.services.init-zoeyscomputer-db = {
description = "Initialize ZoeysComputer Database User";
wantedBy = ["multi-user.target"];
after = ["postgresql.service"];
before = ["zoeyscomputer.service"];
serviceConfig = {
Type = "oneshot";
RemainAfterExit = true;
i really tried
2024-10-21 20:46:10 -04:00
User = "root";
changess...
2024-10-21 20:37:53 -04:00
};
script = ''
${optionalString (cfg.phx.database.passwordFile != null) ''
# Read password from file
PASSWORD=$(cat ${cfg.phx.database.passwordFile})
# Check if user exists
if ! psql -tAc "SELECT 1 FROM pg_roles WHERE rolname='${cfg.phx.database.user}'" | grep -q 1; then
# Create user with password if it doesn't exist
psql -c "CREATE USER ${cfg.phx.database.user} WITH PASSWORD '$PASSWORD'"
else
# Update password if user exists
psql -c "ALTER USER ${cfg.phx.database.user} WITH PASSWORD '$PASSWORD'"
fi
# Ensure user has access to database
psql -c "GRANT ALL PRIVILEGES ON DATABASE ${cfg.phx.database.name} TO ${cfg.phx.database.user}"
''}
'';
path = [config.services.postgresql.package];
};
change db
2024-10-21 20:07:13 -04:00
# Ensure database exists
services.postgresql.ensureDatabases = [
cfg.phx.database.name
];
rename svc
2024-10-21 19:22:41 -04:00
systemd.services."zoeyscomputer-phx" = let
init v0
2024-10-21 19:20:35 -04:00
release_name = "zoeyscomputer";
working_directory = "/var/lib/zoeycomputer";
in {
wantedBy = ["multi-user.target"];
changess...
2024-10-21 20:37:53 -04:00
after = ["network.target" "postgresql.service" "init-zoeyscomputer-db.service"];
requires = ["network-online.target" "postgresql.service" "init-zoeyscomputer-db.service"];
init v0
2024-10-21 19:20:35 -04:00
description = "zoey computer";
environment = {
RELEASE_TMP = working_directory;
update user logic
2024-10-21 20:12:15 -04:00
PORT = toString cfg.phx.port;
init v0
2024-10-21 19:20:35 -04:00
PHX_HOST = cfg.domain;
change thing to string
2024-10-21 19:33:18 -04:00
PHX_SERVER = toString cfg.phx.enableServer;
init v0
2024-10-21 19:20:35 -04:00
};
serviceConfig = {
Type = "exec";
changess...
2024-10-21 20:37:53 -04:00
User = "zoeycomputer-phx";
init v0
2024-10-21 19:20:35 -04:00
DynamicUser = true;
WorkingDirectory = working_directory;
PrivateTmp = true;
ExecStart = pkgs.writeShellScript "start-zoeycomputer" ''
update user logic
2024-10-21 20:12:15 -04:00
# If a password file is specified, construct DATABASE_URL with password
change db
2024-10-21 20:07:13 -04:00
${
if cfg.phx.database.passwordFile != null
then ''
DB_PASSWORD=$(cat ${cfg.phx.database.passwordFile})
export DATABASE_URL="postgresql://${cfg.phx.database.user}:$DB_PASSWORD@${cfg.phx.database.host}/${cfg.phx.database.name}"
''
else ''
export DATABASE_URL="postgresql://${cfg.phx.database.user}@${cfg.phx.database.host}/${cfg.phx.database.name}"
''
}
update user logic
2024-10-21 20:12:15 -04:00
# Run migrations
init v0
2024-10-21 19:20:35 -04:00
${cfg.phx.package}/bin/${release_name} eval "ZoeysComputer.Release.migrate"
update user logic
2024-10-21 20:12:15 -04:00
# Start the application
exec ${cfg.phx.package}/bin/${release_name} start
init v0
2024-10-21 19:20:35 -04:00
'';
ExecStop = ''
${cfg.phx.package}/bin/${release_name} stop
'';
ExecReload = ''
${cfg.phx.package}/bin/${release_name} restart
'';
Restart = "on-failure";
RestartSec = 5;
StartLimitBurst = 3;
StartLimitInterval = 10;
};
changess...
2024-10-21 20:37:53 -04:00
path = [pkgs.bash];
init v0
2024-10-21 19:20:35 -04:00
};
};
};
};
add links
2024-10-21 13:57:31 -04:00
perSystem = {
# self',
config,
system,
pkgs,
lib,
...
init v0
2024-10-21 19:20:35 -04:00
}: let
npmDeps = (pkgs.callPackage ./assets/default.nix {}).shell.nodeDependencies;
heroicons = pkgs.fetchFromGitHub {
owner = "tailwindlabs";
repo = "heroicons";
rev = "v2.1.1";
hash = "sha256-y/kY8HPJmzB2e7ErgkUdQijU7oUhfS3fI093Rsvyvqs=";
sparseCheckout = ["optimized"];
};
in {
add links
2024-10-21 13:57:31 -04:00
# Define a consistent package set for development, testing, and
# production.
_module.args.pkgs = import nixpkgs {
inherit system;
overlays = [
(
final: _: let
erlang = final.beam.interpreters.${erlangVersion};
beamPackages = final.beam.packages.${erlangVersion};
elixir = beamPackages.${elixirVersion};
in {
inherit erlang elixir;
# Hex is not used in the devShell.
# inherit (beamPackages) hex;
}
)
];
};
init v0
2024-10-21 19:20:35 -04:00
# # Add hydraJob for x86_64-linux
# hydraJobs = lib.optionalAttrs (system == "x86_64-linux") {
# default = self.packages.${system}.default;
# };
add hydra job
2024-10-21 14:00:16 -04:00
add links
2024-10-21 13:57:31 -04:00
# You can build your Elixir application using mixRelease.
packages.default = pkgs.beamPackages.mixRelease {
pname = "zoeys-computer";
version = "0.1.0";
src = ./.;
removeCookie = false;
mixNixDeps = with pkgs;
import ./deps.nix {
inherit pkgs lib beamPackages;
};
buildInputs = with pkgs; [nodejs];
init v0
2024-10-21 19:20:35 -04:00
postBuild = ''
echo ${heroicons}
ln -sf ${npmDeps}/lib/node_modules assets/node_modules
ln -sf ${heroicons} deps/heroicons
ls deps/
npm run deploy --prefix ./assets
mix do deps.loadpaths --no-deps-check, phx.digest
'';
add links
2024-10-21 13:57:31 -04:00
};
# Add dependencies to develop your application using Mix.
devShells.default = pkgs.mkShell {
buildInputs = with pkgs; (
[
erlang
elixir
# You are likely to need Node.js if you develop a Phoenix
# application.
nodejs
mix2nix
init v0
2024-10-21 19:20:35 -04:00
node2nix
add links
2024-10-21 13:57:31 -04:00
# Add the language server of your choice.
inputs.lexical.packages.${system}.default
# I once added Hex via a Nix development shell, but now I install
# and upgrade it using Mix. Hex installed using Nix can cause an
# issue if you manage Elixir dependencies using Mix.
]
# Add a dependency for a file watcher if you develop a Phoenix
# application.
++ lib.optional stdenv.isLinux inotify-tools
++ (lib.optionals stdenv.isDarwin (
with darwin.apple_sdk.frameworks; [
CoreFoundation
CoreServices
]
))
);
};
# You can define background processes in Nix using
# process-compose-flake.
process-compose.example = {
settings = {
processes = {
ponysay.command = ''
while true; do
${lib.getExe pkgs.ponysay} "Enjoy our ponysay demo!"
sleep 2
done
'';
};
};
};
};
};
}
Reference in a new issue Copy permalink