Tue Jun 4 12:53:01 AM CEST 2024
This commit is contained in:
parent
d7b9755f91
commit
e0e75470e8
|
|
@ -1,35 +1,28 @@
|
||||||
{ inputs, config, pkgs, ... }:
|
{ inputs, config, pkgs, ... }:
|
||||||
let
|
let
|
||||||
mkTimer = { name, interval, serviceScript }:
|
mkTimer = name: cfg:
|
||||||
let
|
|
||||||
timerName = "${name}-timer";
|
|
||||||
serviceName = "${name}-service";
|
|
||||||
in
|
|
||||||
{
|
{
|
||||||
systemd.timers.${timerName} = {
|
Install.WantedBy = [ "timers.target" ];
|
||||||
wantedBy = [ "timers.target" ];
|
Timer = {
|
||||||
timerConfig = {
|
Persistent = true;
|
||||||
OnBootSec = interval;
|
OnCalendar = cfg.when;
|
||||||
OnUnitActiveSec = interval;
|
Unit = "${name}.service";
|
||||||
Unit = "${serviceName}.service";
|
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
mkService = name: cfg:
|
||||||
systemd.services.${serviceName} = {
|
{
|
||||||
script = ''
|
Unit.Description = name;
|
||||||
set -eu
|
Install = {
|
||||||
${serviceScript}
|
WantedBy = [ "default.target" ];
|
||||||
'';
|
};
|
||||||
serviceConfig = {
|
Service = {
|
||||||
Type = "oneshot";
|
ExecStart = cfg.script;
|
||||||
User = "root";
|
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
};
|
scripts = {
|
||||||
disk_timer = mkTimer {
|
disk_check = {
|
||||||
name = "disk_check";
|
when = "*-*-* *:00:00";
|
||||||
interval = "1h";
|
script = toString (pkgs.writeShellScript "script" ''
|
||||||
serviceScript = toString (pkgs.writeShellScript "disk_check" ''
|
|
||||||
REPORT_EMAIL=email@thomasave.be
|
REPORT_EMAIL=email@thomasave.be
|
||||||
ZPOOL_STATUS=$(zpool status -x)
|
ZPOOL_STATUS=$(zpool status -x)
|
||||||
if [ "$ZPOOL_STATUS" = "all pools are healthy" ] || [ "$ZPOOL_STATUS" = "no pools available" ]
|
if [ "$ZPOOL_STATUS" = "all pools are healthy" ] || [ "$ZPOOL_STATUS" = "no pools available" ]
|
||||||
|
|
@ -44,7 +37,53 @@ let
|
||||||
fi
|
fi
|
||||||
'');
|
'');
|
||||||
};
|
};
|
||||||
|
vdirsyncer = {
|
||||||
|
when = "*:0/15";
|
||||||
|
script = toString (pkgs.writeShellScript "script" ''
|
||||||
|
${pkgs.vdirsyncer}/bin/vdirsyncer sync imec/pair
|
||||||
|
'');
|
||||||
|
};
|
||||||
|
mbsync = {
|
||||||
|
when = "*-*-* 00:00:00";
|
||||||
|
script = toString (pkgs.writeShellScript "script" ''
|
||||||
|
BASEDIR=/home/server/Containers/mbsync
|
||||||
|
# python3 $BASEDIR/config/oauth2/mutt_oauth2.py $BASEDIR/data/oauth2/credentials.json
|
||||||
|
docker exec --user "1000:1000" mbsync-container /home/user/.config/mbsync/run.sh -a
|
||||||
|
${pkgs.notmuch}/bin/notmuch new
|
||||||
|
'');
|
||||||
|
};
|
||||||
|
sync_vault = {
|
||||||
|
when = "*-*-* 02:00:00";
|
||||||
|
script = toString (pkgs.writeShellScript "script" ''
|
||||||
|
source $HOME/.secrets/Backup/env.sh
|
||||||
|
for _ in {1..2}; do
|
||||||
|
OUTPUT=$(echo "$ZFS_PASSPHRASE" | ssh 10.4.0.1 zfs load-key Vault/Thomas/Encrypted 2>&1);
|
||||||
|
if [ "$OUTPUT" == "Key load error: Key already loaded for 'Vault/Thomas/Encrypted'." ]; then
|
||||||
|
echo "Key successfully loaded, starting syncoid"
|
||||||
|
syncoid --no-privilege-elevation --no-sync-snap tank/Storage/Thomas/Workspace 10.4.0.1:Vault/Thomas/Encrypted/Storage/Workspace
|
||||||
|
syncoid --no-privilege-elevation --no-sync-snap tank/Storage/Thomas 10.4.0.1:Vault/Thomas/Encrypted/Storage/T
|
||||||
|
syncoid --no-privilege-elevation --no-sync-snap tank/Storage/Niels 10.4.0.1:Vault/Thomas/Encrypted/Storage/N
|
||||||
|
syncoid --no-privilege-elevation --no-sync-snap tank/Storage/Yolande 10.4.0.1:Vault/Thomas/Encrypted/Storage/Y
|
||||||
|
syncoid --no-privilege-elevation --no-sync-snap tank/Containers 10.4.0.1:Vault/Thomas/Encrypted/Containers
|
||||||
|
ssh 10.4.0.1 zfs unload-key Vault/Thomas/Encrypted
|
||||||
|
${pkgs.curl}/bin/curl https://uptime.thomasave.be/api/push/s39pIIrB0R
|
||||||
|
exit 0
|
||||||
|
fi
|
||||||
|
done
|
||||||
|
|
||||||
|
echo "Found output instead: $OUTPUT"
|
||||||
|
echo "Failed to load key: $OUTPUT" | sendmail
|
||||||
|
exit 1
|
||||||
|
'');
|
||||||
|
};
|
||||||
|
backup = {
|
||||||
|
when = "*-*-* 04:00:00";
|
||||||
|
script = toString (pkgs.writeShellScript "script" ''
|
||||||
|
${./scripts/files/backup.sh}
|
||||||
|
${pkgs.curl}/bin/curl https://uptime.thomasave.be/api/push/R6iJcWqGp0
|
||||||
|
'');
|
||||||
|
};
|
||||||
|
};
|
||||||
in
|
in
|
||||||
{
|
{
|
||||||
home.username = "server";
|
home.username = "server";
|
||||||
|
|
@ -54,6 +93,7 @@ in
|
||||||
settings.use-xdg-base-directories = true;
|
settings.use-xdg-base-directories = true;
|
||||||
};
|
};
|
||||||
|
|
||||||
|
xdg.enable = true;
|
||||||
# home.profileDirectory = "${config.xdg.stateHome}/nix/profile";
|
# home.profileDirectory = "${config.xdg.stateHome}/nix/profile";
|
||||||
imports = [
|
imports = [
|
||||||
(import ./common.nix { inherit inputs config pkgs; })
|
(import ./common.nix { inherit inputs config pkgs; })
|
||||||
|
|
@ -62,5 +102,9 @@ in
|
||||||
home.sessionVariables = {
|
home.sessionVariables = {
|
||||||
NIX_PATH = "${config.xdg.stateHome}/nix/profiles/channels/";
|
NIX_PATH = "${config.xdg.stateHome}/nix/profiles/channels/";
|
||||||
LANG = "en_US.UTF-8";
|
LANG = "en_US.UTF-8";
|
||||||
|
XDG_RUNTIME_DIR="/run/user/$(id -u)";
|
||||||
};
|
};
|
||||||
|
|
||||||
|
systemd.user.services = pkgs.lib.mapAttrs mkService scripts;
|
||||||
|
systemd.user.timers = pkgs.lib.mapAttrs mkTimer scripts;
|
||||||
}
|
}
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue