feat: init basic scaffolding for docker migration

2023-05-12 08:18:42 -04:00 · 2023-05-12 08:18:42 -04:00 · 23278892c5
parent 941a017882
commit 23278892c5
8 changed files with 60 additions and 5 deletions
--- a/hosts/hime/default.nix
+++ b/hosts/hime/default.nix
@ -22,7 +22,6 @@
    xkbVariant = "";
  };

-  virtualisation.docker.enable = true;
  users = {
    defaultUserShell = pkgs.nushell;
    users.oh = {
@ -33,7 +32,6 @@
  };

  environment.systemPackages = with pkgs; [
-    docker-compose
    hugo
    wget
    python3Full
--- a/hosts/sakura/default.nix
+++ b/hosts/sakura/default.nix
@ -6,6 +6,7 @@
  imports = [
    ./hardware-configuration.nix
    ../../modules
+    ../../modules/services
  ];

  boot.loader = {
@ -16,7 +17,6 @@
      useOSProber = false;
    };
  };
-
  networking = {
    hostName = "sakura";
  };
@ -26,7 +26,6 @@
    xkbVariant = "";
  };

-  virtualisation.docker.enable = true;
  users = {
    defaultUserShell = pkgs.nushell;
    users.notoh = {
--- a/hosts/sutakku/default.nix
+++ b/hosts/sutakku/default.nix
@ -26,7 +26,6 @@
    xkbVariant = "";
  };

-  virtualisation.docker.enable = true;
  users = {
    defaultUserShell = pkgs.nushell;
    users.oh = {
--- a/modules/default.nix
+++ b/modules/default.nix
@ -5,5 +5,6 @@
    ./nix.nix
    ./system.nix
    ./openssh.nix
+    ./virtualisation.nix
  ];
 }
--- a/modules/services/default.nix
+++ b/modules/services/default.nix
@ -0,0 +1,6 @@
+{...}: {
+  imports = [
+    ./traefik.nix
+    ./homepage.nix
+  ];
+}
--- a/modules/services/homepage.nix
+++ b/modules/services/homepage.nix
@ -0,0 +1,7 @@
+{pkgs, ...}: {
+  virtualisation.oci-containers.containers.homepage = {
+    ports = ["3000:3000"];
+    image = "ghcr.io/benphelps/homepage";
+    volumes = ["/home/notoh/docker/homepage:/app/config" "/var/run/docker.sock:/var/run/docker.sock:ro"];
+  };
+}
--- a/modules/services/traefik.nix
+++ b/modules/services/traefik.nix
@ -0,0 +1,29 @@
+{...}: {
+  networking.firewall.allowedTCPPorts = [80 443];
+
+  services.traefik = {
+    enable = true;
+    group = "docker";
+    dynamicConfigOptions = {
+      http = {
+        routers = {
+          homepage = {
+            rule = "Host(`dashboard.lab`)";
+            entryPoints = ["websecure"];
+            service = "homepage";
+          };
+        };
+      };
+    };
+    staticConfigOptions = {
+      global = {
+        checkNewVersion = false;
+        sendAnonymousUsage = false;
+      };
+      entryPoints = {
+        websecure.address = ":443";
+        web.address = ":80";
+      };
+    };
+  };
+}
--- a/modules/virtualisation.nix
+++ b/modules/virtualisation.nix
@ -0,0 +1,16 @@
+{pkgs, ...}: {
+  environment.systemPackages = with pkgs; [docker-compose];
+
+  virtualisation.oci-containers.backend = "docker";
+  virtualisation.docker = {
+    enable = true;
+    enableOnBoot = true;
+    autoPrune = {
+      enable = true;
+      dates = "weekly";
+    };
+    listenOptions = [
+      "/run/docker.sock"
+    ];
+  };
+}