nix-dotfiles/systems/jeeves/services.nix

{
  config,
  inputs,
  pkgs,
  ...
}:
{
  systemd = {
    services = {
      plex_permission = {
        description = "maintains /zfs/storage/plex permissions";
        serviceConfig = {
          Type = "oneshot";
          ExecStart = "${pkgs.bash}/bin/bash ${./scripts/plex_permission.sh}";
        };
      };
      startup_validation = {
        requires = [ "network-online.target" ];
        after = [ "network-online.target" ];
        wantedBy = [ "multi-user.target" ];
        description = "validates startup";
        path = [ pkgs.zfs ];
        serviceConfig = {
          EnvironmentFile = config.sops.secrets."server-validation/webhook".path;
          Type = "oneshot";
          ExecStart = "${inputs.system_tools.packages.x86_64-linux.default}/bin/validate_jeeves";
        };
      };
    };
    timers = {
      plex_permission = {
        wantedBy = [ "timers.target" ];
        timerConfig = {
          OnBootSec = "1h";
          OnCalendar = "daily 03:00";
          Unit = "plex_permission.service";
        };
      };
      startup_validation = {
        wantedBy = [ "timers.target" ];
        timerConfig = {
          OnBootSec = "10min";
          Unit = "startup_validation.service";
        };
      };
    };
  };
  sops = {
    defaultSopsFile = ./secrets.yaml;
    secrets."server-validation/webhook".owner = "root";
  };
}
using hooks url in sops 2024-07-07 19:47:11 -04:00			`{`
			`config,`
			`inputs,`
			`pkgs,`
			`...`
			`}:`
added plex_permission service 2024-06-22 12:40:50 -04:00			`{`
			`systemd = {`
created startup_validation services and timer 2024-07-07 10:53:17 -04:00			`services = {`
			`plex_permission = {`
			`description = "maintains /zfs/storage/plex permissions";`
			`serviceConfig = {`
			`Type = "oneshot";`
			`ExecStart = "${pkgs.bash}/bin/bash ${./scripts/plex_permission.sh}";`
			`};`
			`};`
added startup_validation for jeeves 2024-07-07 12:38:55 -04:00			`startup_validation = {`
fixing bugs in server_tools 2024-07-26 20:22:27 -04:00			`requires = [ "network-online.target" ];`
			`after = [ "network-online.target" ];`
added startup_validation for jeeves 2024-07-07 12:38:55 -04:00			`wantedBy = [ "multi-user.target" ];`
			`description = "validates startup";`
test 2024-07-08 18:22:58 -04:00			`path = [ pkgs.zfs ];`
added startup_validation for jeeves 2024-07-07 12:38:55 -04:00			`serviceConfig = {`
converted startup_validation services to EnvironmentFile 2024-07-08 19:06:44 -04:00			`EnvironmentFile = config.sops.secrets."server-validation/webhook".path;`
added startup_validation for jeeves 2024-07-07 12:38:55 -04:00			`Type = "oneshot";`
renaming server_tools to system_tools 2024-08-11 10:30:37 -04:00			`ExecStart = "${inputs.system_tools.packages.x86_64-linux.default}/bin/validate_jeeves";`
added startup_validation for jeeves 2024-07-07 12:38:55 -04:00			`};`
added plex_permission service 2024-06-22 12:40:50 -04:00			`};`
			`};`
created startup_validation services and timer 2024-07-07 10:53:17 -04:00			`timers = {`
			`plex_permission = {`
			`wantedBy = [ "timers.target" ];`
			`timerConfig = {`
			`OnBootSec = "1h";`
			`OnCalendar = "daily 03:00";`
			`Unit = "plex_permission.service";`
			`};`
			`};`
			`startup_validation = {`
			`wantedBy = [ "timers.target" ];`
			`timerConfig = {`
			`OnBootSec = "10min";`
			`Unit = "startup_validation.service";`
			`};`
added plex_permission service 2024-06-22 12:40:50 -04:00			`};`
			`};`
			`};`
using hooks url in sops 2024-07-07 19:47:11 -04:00			`sops = {`
			`defaultSopsFile = ./secrets.yaml;`
			`secrets."server-validation/webhook".owner = "root";`
			`};`
added plex_permission service 2024-06-22 12:40:50 -04:00			`}`