test fileshelter

modules/collections/desktop.nix

@@ -1,7 +1,6 @@
 {pkgs, config, ...}:
 {
   imports = [
-    ../docker.nix
     #../fh/scanning.nix
     ../flatpak.nix
     ../gpg.nix
@@ -27,6 +26,9 @@
       ip = "192.168.0.11";
       dns = "192.168.0.6";
     };
+    misc = {
+      docker.enable = true;
+    };
     hardware = {
       vfio.enable = true;
       nvidia.enable = true;

modules/collections/server.nix

@@ -18,7 +18,6 @@
     #../games/palworld.nix
     ../backup.nix
     ../cron.nix
-    ../docker.nix
     ../fail2ban.nix
     ../firewall.nix
     ../git.nix
@@ -47,6 +46,9 @@
         dir = "/mnt/1tbssd/kavita";
       };
     };
+    misc = {
+      docker.enable = true;
+    };
     hardware = {
       firmware.enable = true;
       ssd.enable = true;

modules/misc/default.nix

@@ -7,5 +7,6 @@
     ./cli-tools.nix
     ./tmpfs.nix
     ./static-ip.nix
+    ./docker.nix
   ];
 }

modules/misc/docker.nix

@@ -1,9 +1,18 @@
 { config, pkgs, lib, inputs, ... }:
+with lib;
+let
+  cfg = config.custom.misc.docker;
+in
 {
+  options.custom.misc.docker = {
+    enable = mkEnableOption "Enables docker";
+  };
+  config = lib.mkIf cfg.enable {
     virtualisation.docker.enable = true;
     virtualisation.docker.daemon.settings = { ip = "127.0.0.1"; };
     environment.systemPackages = with pkgs; [
         docker-compose
     ];
     virtualisation.docker.enableNvidia = lib.mkIf config.custom.hardware.nvidia.enable true;
+  };
 }

modules/services/default.nix

@@ -5,5 +5,6 @@
     ./kubernetes.nix
     ./kavita.nix
     ./nginx.nix
+    ./fileshelter.nix
   ];
 }

modules/services/fileshelter.nix

@@ -0,0 +1,29 @@
+{ config, pkgs, lib, inputs, ... }:
+with lib;
+let
+  cfg = config.custom.services.fileshelter;
+in
+{
+  options.custom.services.fileshelter = {
+    enable = mkEnableOption "Enables fileshelter";
+  };
+  config = lib.mkIf cfg.enable {
+    age.secrets.fileshelter-conf = {
+        file = ../../secrets/fileshelter-conf.age;
+    };
+    custom.misc.docker.enable = true;
+    virtualisation.oci-containers.containers = {
+      "fileshelter" = {
+        autoStart = true;
+        image = "epoupon/fileshelter";
+        ports = [
+          "127.0.0.1:5091:5091"
+        ];
+        volumes = [
+          "/data/fileshelter:/var/fileshelter"
+          "/run/agenix/fileshelter.conf:/etc/fileshelter.conf"
+        ];
+      };
+    };
+  };
+}

secrets/secrets.nix

@@ -23,4 +23,5 @@ in
   "step-ca-pw.age".publicKeys = [ mini-pc server kop ];
   "step-ca-key.age".publicKeys = [ mini-pc server kop ];
   "grafana-contact-points.age".publicKeys = [ mini-pc server kop ];
+  "fileshelter-conf.age".publicKeys = [ mini-pc server kop ];
 }

systems/mini-pc/configuration.nix

@@ -32,6 +32,7 @@
     services = {
       acme.enable = true;
       nginx.enable = true;
+      fileshelter.enable = true;
       kavita = {
         enable = true;
         dir = "/data/kavita";
@@ -39,6 +40,9 @@
     };
     nftables.enable = true;
     cli-tools.enable = true;
+    misc = {
+      docker.enable = true;
+    };
     nix = {
       index.enable = true;
       ld.enable = true;