nix-sops

2024-08-07 18:41:09 -05:00
parent 26cc1b223f
commit 0fc00e2d29
26 changed files with 683 additions and 202 deletions
--- a/hosts/nas/services.nix
+++ b/hosts/nas/services.nix
@@ -127,10 +127,11 @@ in
    };

    tailscale = {
-      enable = false;
+      enable = true;
      openFirewall = true;
      useRoutingFeatures = "client";
      extraUpFlags = [ "--advertise-exit-node" ];
+      authKeyFile = "/media/nas/ssd/nix-app-data/tailscale/auth";
    };

    btrfs = {
@@ -153,6 +154,39 @@ in
        "/media/nas/main/isos"
      ];
    };
+
+    authentik = {
+      enable = true;
+      environmentFile = "/media/nas/ssd/nix-app-data/authentik/.env";
+
+    };
+
+    postgresql = {
+      enable = true;
+      package = pkgs.postgresql_16;
+      dataDir = "/media/nas/ssd/nix-app-data/postgresql";
+      ensureDatabases = [ "authentik" ];
+      ensureUsers = [
+        {
+          name = "authentik";
+          ensureDBOwnership = true;
+        }
+      ];
+    };
+
+    redis = {
+      servers = {
+        authentik = {
+          enable = true;
+          port = 6379;
+        };
+
+        nextcloud = {
+          enable = true;
+          port = 6380;
+        };
+      };
+    };
  };

  systemd.user.services = {