teidesu/nixfiles
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
nixfiles/hosts/koi/containers/soulseek/default.nix

59 lines
1.6 KiB
Nix
Raw Normal View History

feat(koi): slskd
2024-12-02 05:52:18 +03:00
{ config, ... }:
let
UID = 1119;
in {
users.users.soulseek = {
isNormalUser = true;
uid = UID;
extraGroups = [ "geesefs" ];
};
chore(koi): ecryptfs -> gocryptfs
2024-12-07 06:52:47 +03:00
systemd.services.docker-slskd.requires = [ "gocryptfs.service" ];
feat(koi): slskd
2024-12-02 05:52:18 +03:00
virtualisation.oci-containers.containers.slskd = {
image = "slskd/slskd:0.21.4.65534-9a68c184";
ports = [
"50300:50300"
];
environment = {
SLSKD_REMOTE_CONFIGURATION = "true";
SLSKD_DOWNLOADS_DIR = "/mnt/downloads";
SLSKD_REMOTE_FILE_MANAGEMENT = "true";
SLSKD_SHARED_DIR = "/mnt/music";
SLSKD_NO_HTTPS = "true";
SLSKD_NO_AUTH = "true"; # managed by oidc proxy
};
user = "${builtins.toString UID}:${builtins.toString UID}";
extraOptions = [
"--group-add=${builtins.toString config.users.groups.geesefs.gid}"
chore(koi): prefer --mount to -v
2024-12-11 09:11:31 +03:00
"--mount=type=bind,source=/srv/slskd,target=/app"
"--mount=type=bind,source=/mnt/s3-desu-priv-encrypted/music,target=/mnt/music"
"--mount=type=bind,source=/mnt/puffer/Downloads,target=/mnt/downloads"
feat(koi): slskd
2024-12-02 05:52:18 +03:00
];
};
systemd.tmpfiles.rules = [
"d /srv/slskd 0700 ${builtins.toString UID} ${builtins.toString UID} -"
];
desu.openid-proxy.services.soulseek = {
clientId = "torrent";
domain = "soulseek.stupid.fish";
upstream = "http://slskd.docker:5030";
envSecret = "torrent-proxy-env";
};
services.nginx.virtualHosts."soulseek.stupid.fish" = {
forceSSL = true;
useACMEHost = "stupid.fish";
locations."/" = {
proxyPass = "http://soulseek-oidc.docker$request_uri";
proxyWebsockets = true;
};
};
networking.firewall.allowedTCPPorts = [ 50300 ];
}
Reference in a new issue Copy permalink