2025-01-26 18:49:45 -06:00
|
|
|
{
|
|
|
|
|
config,
|
|
|
|
|
lib,
|
|
|
|
|
pkgs,
|
2025-02-03 13:00:31 -06:00
|
|
|
...
|
2025-01-26 18:49:45 -06:00
|
|
|
}: let
|
|
|
|
|
inherit (lib) mkEnableOption mkIf mkOption;
|
|
|
|
|
|
|
|
|
|
cfg = config.foehammer.services.vaultwarden;
|
|
|
|
|
in {
|
|
|
|
|
options.foehammer.services.vaultwarden = {
|
|
|
|
|
enable = mkEnableOption "Enable Vaultwarden Server";
|
|
|
|
|
|
|
|
|
|
port = mkOption {
|
|
|
|
|
type = lib.types.port;
|
|
|
|
|
default = 8222;
|
|
|
|
|
description = ''
|
|
|
|
|
What external port to serve over.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
signups = mkOption {
|
|
|
|
|
type = lib.types.bool;
|
|
|
|
|
default = false;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
envPath = mkOption {
|
|
|
|
|
type = lib.types.port;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
domain = mkOption {
|
|
|
|
|
type = lib.types.str;
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
2025-02-03 13:00:31 -06:00
|
|
|
config = mkIf cfg.enable {
|
|
|
|
|
services.vaultwarden = {
|
|
|
|
|
enable = true;
|
2025-01-26 18:49:45 -06:00
|
|
|
|
2025-02-03 13:00:31 -06:00
|
|
|
config = {
|
|
|
|
|
ROCKET_ADDRESS = "127.0.0.1";
|
|
|
|
|
ROCKET_PORT = cfg.port;
|
|
|
|
|
DOMAIN = cfg.domain;
|
|
|
|
|
ROCKET_LOG = "critical";
|
|
|
|
|
SIGNUPS_ALLOWED = cfg.signups;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
environmentFile = cfg.envPath;
|
2025-01-26 18:49:45 -06:00
|
|
|
};
|
|
|
|
|
|
2025-01-26 18:59:08 -06:00
|
|
|
foehammer.backups.paths = [
|
|
|
|
|
"/var/lib/bitwarden_rs"
|
|
|
|
|
];
|
2025-01-26 18:49:45 -06:00
|
|
|
};
|
|
|
|
|
}
|
