temp commit

2025-07-16 19:57:33 -05:00
parent 1a254d12c7
commit 6c7c76887b
89 changed files with 4356 additions and 2822 deletions
--- a/modules/nixos/samba/default.nix
+++ b/modules/nixos/samba/default.nix
@@ -0,0 +1,58 @@
+{ lib, config, ... }:
+with lib;
+let
+  cfg = config.nas-samba;
+in
+{
+  imports = [ ./options.nix ];
+
+  config = mkIf cfg.enable {
+    # make shares visible for Windows clients
+    services.samba-wsdd = {
+      enable = true;
+      openFirewall = true;
+    };
+
+    services.netatalk = {
+      enable = cfg.enableTimeMachine;
+      settings = {
+        time-machine = {
+          path = cfg.timeMachinePath;
+          "valid users" = "whoever";
+          "time machine" = cfg.enableTimeMachine;
+        };
+      };
+    };
+
+    networking.firewall.enable = true;
+    networking.firewall.allowPing = true;
+
+    services.samba = {
+      enable = true;
+      openFirewall = true;
+      nsswins = true;
+      nmbd.enable = true;
+      settings =
+        let
+          make =
+            name: share:
+            nameValuePair "${name}" {
+              path = share.sharePath;
+              public = if share.enableTimeMachine then "no" else "yes";
+              browseable = if share.browseable then "yes" else "no";
+              writable = "yes";
+              "force group" = "jallen-nas";
+              "read only" = if share.readOnly then "yes" else "no";
+              "guest ok" = if share.guestOk then "yes" else "no";
+              "create mask" = share.createMask;
+              "directory mask" = share.directoryMask;
+              "fruit:aapl" = if share.enableTimeMachine then "yes" else "no";
+              "fruit:time machine" = if share.enableTimeMachine then "yes" else "no";
+              "vfs objects" = "catia fruit streams_xattr";
+              "fruit:time machine max size" = share.timeMachineMaxSize;
+            };
+        in
+        mapAttrs' make cfg.shares;
+    };
+  };
+}