nixos-configurations/server/default.nix

{ inputs, pkgs, config, lib, ... }:

{
  imports = [
    inputs.agenix.nixosModules.default
    ./hardware-configuration.nix
    ../shared.nix
  ];

  nix.settings.trusted-users = [ "thiloho" ];

  age.secrets = {
    hedgedoc-environment-file.file =
      ../../secrets/hedgedoc-environment-file.age;
    discord-bot-token.file = ../../secrets/discord-bot-token.age;
    todos-environment-file.file = ../../secrets/todos-environment-file.age;
    "restic/minecraft-environment-file".file =
      ../../secrets/restic/minecraft-environment-file.age;
    "restic/minecraft-repository".file =
      ../../secrets/restic/minecraft-repository.age;
    "restic/minecraft-password".file =
      ../../secrets/restic/minecraft-password.age;
    "restic/hedgedoc-environment-file".file =
      ../../secrets/restic/hedgedoc-environment-file.age;
    "restic/hedgedoc-repository".file =
      ../../secrets/restic/hedgedoc-repository.age;
    "restic/hedgedoc-password".file =
      ../../secrets/restic/hedgedoc-password.age;
    "restic/todos-environment-file".file =
      ../../secrets/restic/todos-environment-file.age;
    "restic/todos-repository".file = ../../secrets/restic/todos-repository.age;
    "restic/todos-password".file = ../../secrets/restic/todos-password.age;
    "restic/discord-bot-environment-file".file =
      ../../secrets/restic/discord-bot-environment-file.age;
    "restic/discord-bot-repository".file =
      ../../secrets/restic/discord-bot-repository.age;
    "restic/discord-bot-password".file =
      ../../secrets/restic/discord-bot-password.age;
  };

  environment.systemPackages = with pkgs; [ nodejs_20 ];

  networking = {
    hostName = "server";
    firewall = {
      allowedTCPPorts = [ 80 443 25565 ];
      allowedUDPPorts = [ 80 443 25565 ];
    };
  };

  services = {
    openssh = {
      enable = true;
      settings.PasswordAuthentication = false;
    };
    minecraft-server = {
      enable = true;
      eula = true;
      declarative = true;
      openFirewall = true;
      whitelist = {
        thilo_ho = "4e4d744d-7748-46bc-add8-b3e8ca3b4cf5";
        PegasusIsHere = "24155f74-eb04-4f45-a743-f2b7eb71c6a2";
        BakaZaps = "1888532c-6df7-4514-b96a-99ed4e7684f2";
        Liaxswan = "ccbf3468-a6b4-4d7b-9837-5a2451deca79";
      };
      serverProperties = {
        difficulty = 3;
        max-players = 10;
        motd = "Thilo's SMP";
        white-list = false;
      };
    };
    nginx = {
      enable = true;
      recommendedProxySettings = true;
      recommendedTlsSettings = true;
      virtualHosts = {
        "thilohohlt.com" = {
          enableACME = true;
          forceSSL = true;
          root = inputs.website;
        };
        "aurora.thilohohlt.com" = {
          enableACME = true;
          forceSSL = true;
          root = inputs.aurora-blog-template.packages.${pkgs.system}.default;
        };
        "collab.thilohohlt.com" = {
          enableACME = true;
          forceSSL = true;
          locations."/".proxyPass = "http://localhost:3300";
          locations."/socket.io/" = {
            proxyPass = "http://localhost:3300";
            proxyWebsockets = true;
            extraConfig = "proxy_ssl_server_name on;";
          };
        };
        "todos.thilohohlt.com" = {
          enableACME = true;
          forceSSL = true;
          locations."/".proxyPass = "http://localhost:5173";
        };
        "git.thilohohlt.com" = {
          enableACME = true;
          forceSSL = true;
          locations."/".proxyPass = "http://localhost:3001";
        };
      };
    };
    hedgedoc = {
      enable = true;
      settings = {
        port = 3300;
        domain = "collab.thilohohlt.com";
        db = {
          dialect = "postgres";
          host = "/run/postgresql";
          database = "hedgedoc";
        };
        protocolUseSSL = true;
        allowAnonymous = false;
        allowEmailRegister = false;
        email = false;
      };
      environmentFile = config.age.secrets.hedgedoc-environment-file.path;
    };
    gitea = {
      enable = true;
      appName = "Gitea instance of Thilo";
      database = {
        type = "postgres";
        host = "/run/postgresql";
      };
      settings.service.DISABLE_REGISTRATION = true;
      settings.server = {
        DOMAIN = "thilohohlt.com";
        ROOT_URL = "https://git.thilohohlt.com";
        HTTP_PORT = 3001;
      };
    };
    postgresql = {
      enable = true;
      package = pkgs.postgresql_15;
      ensureDatabases = [ "dcbot" "hedgedoc" "todos" "gitea" ];
      ensureUsers = [
        {
          name = "hedgedoc";
          ensureDBOwnership = true;
        }
        {
          name = "gitea";
          ensureDBOwnership = true;
        }
      ];
      authentication = lib.mkForce ''
        #type database DBuser auth-method
        local all      all    trust
      '';
    };
    restic.backups = {
      minecraft-backup = {
        initialize = true;

        environmentFile =
          config.age.secrets."restic/minecraft-environment-file".path;
        repositoryFile = config.age.secrets."restic/minecraft-repository".path;
        passwordFile = config.age.secrets."restic/minecraft-password".path;

        paths = [ "/var/lib/minecraft/world" ];

        pruneOpts = [ "--keep-daily 7" "--keep-weekly 5" "--keep-monthly 12" ];
      };
      hedgedoc-database-backup = {
        initialize = true;

        environmentFile =
          config.age.secrets."restic/hedgedoc-environment-file".path;
        repositoryFile = config.age.secrets."restic/hedgedoc-repository".path;
        passwordFile = config.age.secrets."restic/hedgedoc-password".path;

        paths =
          [ "/var/lib/hedgedoc/uploads" "/var/lib/hedgedoc/hedgedoc.dump" ];

        backupPrepareCommand = ''
          ${config.services.postgresql.package}/bin/pg_dump -U postgres -Fc hedgedoc > /var/lib/hedgedoc/hedgedoc.dump 
        '';

        pruneOpts = [ "--keep-daily 7" "--keep-weekly 5" "--keep-monthly 12" ];
      };
      todos-database-backup = {
        initialize = true;

        environmentFile =
          config.age.secrets."restic/todos-environment-file".path;
        repositoryFile = config.age.secrets."restic/todos-repository".path;
        passwordFile = config.age.secrets."restic/todos-password".path;

        paths = [ "/var/lib/todos.dump" ];

        backupPrepareCommand = ''
          ${config.services.postgresql.package}/bin/pg_dump -U postgres -Fc todos  > /var/lib/todos.dump
        '';

        pruneOpts = [ "--keep-daily 7" "--keep-weekly 5" "--keep-monthly 12" ];
      };
      discord-bot-database-backup = {
        initialize = true;

        environmentFile =
          config.age.secrets."restic/discord-bot-environment-file".path;
        repositoryFile =
          config.age.secrets."restic/discord-bot-repository".path;
        passwordFile = config.age.secrets."restic/discord-bot-password".path;

        paths = [ "/var/lib/dcbot.dump" ];

        backupPrepareCommand = ''
          ${config.services.postgresql.package}/bin/pg_dump -U postgres -Fc dcbot  > /var/lib/dcbot.dump
        '';

        pruneOpts = [ "--keep-daily 7" "--keep-weekly 5" "--keep-monthly 12" ];
      };
    };
  };

  security = {
    acme = {
      acceptTerms = true;
      defaults.email = "thilo.hohlt@tutanota.com";
    };
    sudo.extraConfig = ''
      %wheel ALL=(ALL) NOPASSWD: ALL, SETENV: ALL
    '';
  };

  systemd.services = {
    todoapp = {
      description = "Todo application to plan your daily tasks effectively";
      wantedBy = [ "multi-user.target" ];
      serviceConfig = {
        Type = "simple";
        Environment =
          "PORT=5173 DOTENV_CONFIG_PATH=${config.age.secrets.todos-environment-file.path}";
        ExecStart = "${pkgs.nodejs_20}/bin/node -r dotenv/config .";
        WorkingDirectory = inputs.todos.packages.${pkgs.system}.default;
        Restart = "always";
      };
    };
    todoapp-check-due-dates = {
      description =
        "Set is_overdue for todo in database to true if todo is overdue";
      wantedBy = [ "timers.target" ];
      path = [ pkgs.postgresql_15 ];
      script = ''
        psql -d todos -c "UPDATE user_todo SET is_overdue = true WHERE DATE_TRUNC('day', NOW() AT TIME ZONE 'CET') > due_date AND is_completed = false AND is_overdue = false"
      '';
      serviceConfig = { User = "postgres"; };
      partOf = [ "todoapp.service" ];
      startAt = "daily";
    };
    denbot = {
      description = "Thilo's Den discord bot";
      wantedBy = [ "multi-user.target" ];
      serviceConfig = {
        Type = "simple";
        ExecStartPre = [
          "${pkgs.nodejs_20}/bin/node dbInit.js"
          "${pkgs.nodejs_20}/bin/node deploy-commands.js --token=${config.age.secrets.discord-bot-token.path} --clientId=1142441791459704912"
        ];
        ExecStart =
          "${pkgs.nodejs_20}/bin/node index.js --token=${config.age.secrets.discord-bot-token.path}";
        WorkingDirectory = inputs.denbot.packages.${pkgs.system}.default;
        Restart = "always";
      };
    };
  };

  users.users.thiloho.openssh.authorizedKeys.keys = [
    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMkvr+vT7Ik0fjquxb9xQBfVVWJPgrfC+vJZsyG2V+/G thiloho@pc"
    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ5jOELdhQ85uKV8l2QkbLhjdPr142p1AmPzpawaJ7ws thiloho@laptop"
  ];

  home-manager.users.thiloho = { pkgs, lib, ... }: {
    home = { stateVersion = "23.05"; };
  };
  system.stateVersion = "23.05";
}
Use mkForce instead of mkOverride 2023-11-01 16:59:14 +01:00			`{ inputs, pkgs, config, lib, ... }:`
Add server configuration host 2023-07-02 00:18:17 +02:00
			`{`
			`imports = [`
Add base agenix files 2023-10-31 12:10:31 +01:00			`inputs.agenix.nixosModules.default`
Add server configuration host 2023-07-02 00:18:17 +02:00			`./hardware-configuration.nix`
			`../shared.nix`
			`];`

Allow remote deployments 2023-08-04 09:32:11 +00:00			`nix.settings.trusted-users = [ "thiloho" ];`

Add automated backups to backblaze with restic 2023-12-15 15:24:29 +01:00			`age.secrets = {`
Format code 2024-01-04 14:07:22 +01:00			`hedgedoc-environment-file.file =`
			`../../secrets/hedgedoc-environment-file.age;`
Add automated backups to backblaze with restic 2023-12-15 15:24:29 +01:00			`discord-bot-token.file = ../../secrets/discord-bot-token.age;`
			`todos-environment-file.file = ../../secrets/todos-environment-file.age;`
Format code 2024-01-04 14:07:22 +01:00			`"restic/minecraft-environment-file".file =`
			`../../secrets/restic/minecraft-environment-file.age;`
			`"restic/minecraft-repository".file =`
			`../../secrets/restic/minecraft-repository.age;`
			`"restic/minecraft-password".file =`
			`../../secrets/restic/minecraft-password.age;`
			`"restic/hedgedoc-environment-file".file =`
			`../../secrets/restic/hedgedoc-environment-file.age;`
			`"restic/hedgedoc-repository".file =`
			`../../secrets/restic/hedgedoc-repository.age;`
			`"restic/hedgedoc-password".file =`
			`../../secrets/restic/hedgedoc-password.age;`
			`"restic/todos-environment-file".file =`
			`../../secrets/restic/todos-environment-file.age;`
Add restic backups for other services 2023-12-22 09:57:07 +01:00			`"restic/todos-repository".file = ../../secrets/restic/todos-repository.age;`
			`"restic/todos-password".file = ../../secrets/restic/todos-password.age;`
Format code 2024-01-04 14:07:22 +01:00			`"restic/discord-bot-environment-file".file =`
			`../../secrets/restic/discord-bot-environment-file.age;`
			`"restic/discord-bot-repository".file =`
			`../../secrets/restic/discord-bot-repository.age;`
			`"restic/discord-bot-password".file =`
			`../../secrets/restic/discord-bot-password.age;`
Add automated backups to backblaze with restic 2023-12-15 15:24:29 +01:00			`};`
Utilise Agenix for secret management 2023-11-01 00:09:25 +01:00
Format code 2024-01-04 14:07:22 +01:00			`environment.systemPackages = with pkgs; [ nodejs_20 ];`
Add systemd service and ensure db for discord bot 2023-09-10 20:52:11 +02:00
Open ports for domains 2023-07-29 22:59:36 +02:00			`networking = {`
Open ports for domain 2023-07-29 23:01:20 +02:00			`hostName = "server";`
Open ports for domains 2023-07-29 22:59:36 +02:00			`firewall = {`
			`allowedTCPPorts = [ 80 443 25565 ];`
Add UDP ports for server 2023-10-03 16:59:01 +02:00			`allowedUDPPorts = [ 80 443 25565 ];`
Open ports for domains 2023-07-29 22:59:36 +02:00			`};`
			`};`
Update default.nix 2023-07-24 15:17:18 +02:00
Add nginx for static websites 2023-07-29 22:33:53 +02:00			`services = {`
Update server configuration 2023-08-04 20:44:41 +02:00			`openssh = {`
			`enable = true;`
			`settings.PasswordAuthentication = false;`
			`};`
Add automated backups to backblaze with restic 2023-12-15 15:24:29 +01:00			`minecraft-server = {`
Add nginx for static websites 2023-07-29 22:33:53 +02:00			`enable = true;`
			`eula = true;`
Add automated backups to backblaze with restic 2023-12-15 15:24:29 +01:00			`declarative = true;`
Add terraria server 2023-10-03 16:09:14 +02:00			`openFirewall = true;`
Add automated backups to backblaze with restic 2023-12-15 15:24:29 +01:00			`whitelist = {`
			`thilo_ho = "4e4d744d-7748-46bc-add8-b3e8ca3b4cf5";`
			`PegasusIsHere = "24155f74-eb04-4f45-a743-f2b7eb71c6a2";`
			`BakaZaps = "1888532c-6df7-4514-b96a-99ed4e7684f2";`
			`Liaxswan = "ccbf3468-a6b4-4d7b-9837-5a2451deca79";`
			`};`
			`serverProperties = {`
			`difficulty = 3;`
			`max-players = 10;`
			`motd = "Thilo's SMP";`
			`white-list = false;`
			`};`
Add terraria server 2023-10-03 16:09:14 +02:00			`};`
Add nginx for static websites 2023-07-29 22:33:53 +02:00			`nginx = {`
			`enable = true;`
Make hedgedoc work properly 2023-09-26 20:35:05 +02:00			`recommendedProxySettings = true;`
			`recommendedTlsSettings = true;`
Add nginx for static websites 2023-07-29 22:33:53 +02:00			`virtualHosts = {`
			`"thilohohlt.com" = {`
Updat 2023-07-29 23:19:54 +02:00			`enableACME = true;`
			`forceSSL = true;`
Add nginx for static websites 2023-07-29 22:33:53 +02:00			`root = inputs.website;`
			`};`
Add build to nodejs website 2023-08-01 21:58:41 +00:00			`"aurora.thilohohlt.com" = {`
			`enableACME = true;`
			`forceSSL = true;`
Update server config 2023-08-01 23:28:39 +00:00			`root = inputs.aurora-blog-template.packages.${pkgs.system}.default;`
Add build to nodejs website 2023-08-01 21:58:41 +00:00			`};`
Make hedgedoc work properly 2023-09-26 20:35:05 +02:00			`"collab.thilohohlt.com" = {`
			`enableACME = true;`
			`forceSSL = true;`
			`locations."/".proxyPass = "http://localhost:3300";`
			`locations."/socket.io/" = {`
			`proxyPass = "http://localhost:3300";`
			`proxyWebsockets = true;`
			`extraConfig = "proxy_ssl_server_name on;";`
			`};`
			`};`
Add pipeline for todo app deployment 2023-11-12 19:18:41 +01:00			`"todos.thilohohlt.com" = {`
			`enableACME = true;`
			`forceSSL = true;`
			`locations."/".proxyPass = "http://localhost:5173";`
			`};`
Add gitea instance 2023-11-22 18:26:17 +01:00			`"git.thilohohlt.com" = {`
			`enableACME = true;`
			`forceSSL = true;`
			`locations."/".proxyPass = "http://localhost:3001";`
			`};`
Update server configuration 2023-08-04 20:44:41 +02:00			`};`
			`};`
Add server module and new browser 2023-09-25 15:50:20 +02:00			`hedgedoc = {`
			`enable = true;`
			`settings = {`
			`port = 3300;`
			`domain = "collab.thilohohlt.com";`
			`db = {`
			`dialect = "postgres";`
			`host = "/run/postgresql";`
			`database = "hedgedoc";`
			`};`
Make hedgedoc work properly 2023-09-26 20:35:05 +02:00			`protocolUseSSL = true;`
Change hedgedoc authentication settings 2023-09-27 19:31:20 +02:00			`allowAnonymous = false;`
			`allowEmailRegister = false;`
			`email = false;`
Add server module and new browser 2023-09-25 15:50:20 +02:00			`};`
Utilise Agenix for secret management 2023-11-01 00:09:25 +01:00			`environmentFile = config.age.secrets.hedgedoc-environment-file.path;`
Add server module and new browser 2023-09-25 15:50:20 +02:00			`};`
Add gitea instance 2023-11-22 18:26:17 +01:00			`gitea = {`
			`enable = true;`
			`appName = "Gitea instance of Thilo";`
			`database = {`
			`type = "postgres";`
			`host = "/run/postgresql";`
			`};`
			`settings.service.DISABLE_REGISTRATION = true;`
			`settings.server = {`
			`DOMAIN = "thilohohlt.com";`
			`ROOT_URL = "https://git.thilohohlt.com";`
			`HTTP_PORT = 3001;`
			`};`
			`};`
Add server module and new browser 2023-09-25 15:50:20 +02:00			`postgresql = {`
			`enable = true;`
			`package = pkgs.postgresql_15;`
Add gitea instance 2023-11-22 18:26:17 +01:00			`ensureDatabases = [ "dcbot" "hedgedoc" "todos" "gitea" ];`
Make hedgedoc work properly 2023-09-26 20:35:05 +02:00			`ensureUsers = [`
			`{`
			`name = "hedgedoc";`
Use new option to set database owners 2023-11-26 15:56:56 +01:00			`ensureDBOwnership = true;`
Make hedgedoc work properly 2023-09-26 20:35:05 +02:00			`}`
Add gitea instance 2023-11-22 18:26:17 +01:00			`{`
			`name = "gitea";`
Use new option to set database owners 2023-11-26 15:56:56 +01:00			`ensureDBOwnership = true;`
Add gitea instance 2023-11-22 18:26:17 +01:00			`}`
Make hedgedoc work properly 2023-09-26 20:35:05 +02:00			`];`
Use mkForce instead of mkOverride 2023-11-01 16:59:14 +01:00			`authentication = lib.mkForce ''`
Add server module and new browser 2023-09-25 15:50:20 +02:00			`#type database DBuser auth-method`
			`local all all trust`
			`'';`
			`};`
Add automated backups to backblaze with restic 2023-12-15 15:24:29 +01:00			`restic.backups = {`
			`minecraft-backup = {`
			`initialize = true;`

Format code 2024-01-04 14:07:22 +01:00			`environmentFile =`
			`config.age.secrets."restic/minecraft-environment-file".path;`
Add automated backups to backblaze with restic 2023-12-15 15:24:29 +01:00			`repositoryFile = config.age.secrets."restic/minecraft-repository".path;`
Add restic backups for other services 2023-12-22 09:57:07 +01:00			`passwordFile = config.age.secrets."restic/minecraft-password".path;`
Add automated backups to backblaze with restic 2023-12-15 15:24:29 +01:00
Format code 2024-01-04 14:07:22 +01:00			`paths = [ "/var/lib/minecraft/world" ];`
Add automated backups to backblaze with restic 2023-12-15 15:24:29 +01:00
Format code 2024-01-04 14:07:22 +01:00			`pruneOpts = [ "--keep-daily 7" "--keep-weekly 5" "--keep-monthly 12" ];`
Add restic backups for other services 2023-12-22 09:57:07 +01:00			`};`
			`hedgedoc-database-backup = {`
			`initialize = true;`

Format code 2024-01-04 14:07:22 +01:00			`environmentFile =`
			`config.age.secrets."restic/hedgedoc-environment-file".path;`
Add restic backups for other services 2023-12-22 09:57:07 +01:00			`repositoryFile = config.age.secrets."restic/hedgedoc-repository".path;`
			`passwordFile = config.age.secrets."restic/hedgedoc-password".path;`
Format code 2024-01-04 14:07:22 +01:00
			`paths =`
			`[ "/var/lib/hedgedoc/uploads" "/var/lib/hedgedoc/hedgedoc.dump" ];`
Add restic backups for other services 2023-12-22 09:57:07 +01:00
			`backupPrepareCommand = ''`
			`${config.services.postgresql.package}/bin/pg_dump -U postgres -Fc hedgedoc > /var/lib/hedgedoc/hedgedoc.dump`
			`'';`

Format code 2024-01-04 14:07:22 +01:00			`pruneOpts = [ "--keep-daily 7" "--keep-weekly 5" "--keep-monthly 12" ];`
Add restic backups for other services 2023-12-22 09:57:07 +01:00			`};`
			`todos-database-backup = {`
			`initialize = true;`

Format code 2024-01-04 14:07:22 +01:00			`environmentFile =`
			`config.age.secrets."restic/todos-environment-file".path;`
Add restic backups for other services 2023-12-22 09:57:07 +01:00			`repositoryFile = config.age.secrets."restic/todos-repository".path;`
			`passwordFile = config.age.secrets."restic/todos-password".path;`

			`paths = [ "/var/lib/todos.dump" ];`

			`backupPrepareCommand = ''`
Fix backup commands 2023-12-22 10:15:21 +01:00			`${config.services.postgresql.package}/bin/pg_dump -U postgres -Fc todos > /var/lib/todos.dump`
Add restic backups for other services 2023-12-22 09:57:07 +01:00			`'';`

Format code 2024-01-04 14:07:22 +01:00			`pruneOpts = [ "--keep-daily 7" "--keep-weekly 5" "--keep-monthly 12" ];`
Add restic backups for other services 2023-12-22 09:57:07 +01:00			`};`
			`discord-bot-database-backup = {`
			`initialize = true;`

Format code 2024-01-04 14:07:22 +01:00			`environmentFile =`
			`config.age.secrets."restic/discord-bot-environment-file".path;`
			`repositoryFile =`
			`config.age.secrets."restic/discord-bot-repository".path;`
Add restic backups for other services 2023-12-22 09:57:07 +01:00			`passwordFile = config.age.secrets."restic/discord-bot-password".path;`

			`paths = [ "/var/lib/dcbot.dump" ];`

			`backupPrepareCommand = ''`
Fix backup commands 2023-12-22 10:15:21 +01:00			`${config.services.postgresql.package}/bin/pg_dump -U postgres -Fc dcbot > /var/lib/dcbot.dump`
Add restic backups for other services 2023-12-22 09:57:07 +01:00			`'';`

Format code 2024-01-04 14:07:22 +01:00			`pruneOpts = [ "--keep-daily 7" "--keep-weekly 5" "--keep-monthly 12" ];`
Add automated backups to backblaze with restic 2023-12-15 15:24:29 +01:00			`};`
			`};`
Update default.nix 2023-07-24 14:38:54 +02:00			`};`

Update server configuration 2023-08-04 20:44:41 +02:00			`security = {`
			`acme = {`
			`acceptTerms = true;`
			`defaults.email = "thilo.hohlt@tutanota.com";`
			`};`
			`sudo.extraConfig = ''`
			`%wheel ALL=(ALL) NOPASSWD: ALL, SETENV: ALL`
			`'';`
Updat 2023-07-29 23:19:54 +02:00			`};`

Add pipeline for todo app deployment 2023-11-12 19:18:41 +01:00			`systemd.services = {`
			`todoapp = {`
			`description = "Todo application to plan your daily tasks effectively";`
Format code 2024-01-04 14:07:22 +01:00			`wantedBy = [ "multi-user.target" ];`
Add pipeline for todo app deployment 2023-11-12 19:18:41 +01:00			`serviceConfig = {`
			`Type = "simple";`
Format code 2024-01-04 14:07:22 +01:00			`Environment =`
			`"PORT=5173 DOTENV_CONFIG_PATH=${config.age.secrets.todos-environment-file.path}";`
Add pipeline for todo app deployment 2023-11-12 19:18:41 +01:00			`ExecStart = "${pkgs.nodejs_20}/bin/node -r dotenv/config .";`
			`WorkingDirectory = inputs.todos.packages.${pkgs.system}.default;`
			`Restart = "always";`
			`};`
			`};`
Add systemd service to update due date in app 2023-11-17 12:18:16 +01:00			`todoapp-check-due-dates = {`
Format code 2024-01-04 14:07:22 +01:00			`description =`
			`"Set is_overdue for todo in database to true if todo is overdue";`
			`wantedBy = [ "timers.target" ];`
			`path = [ pkgs.postgresql_15 ];`
Add systemd service to update due date in app 2023-11-17 12:18:16 +01:00			`script = ''`
Update todo query 2024-01-04 16:26:33 +01:00			`psql -d todos -c "UPDATE user_todo SET is_overdue = true WHERE DATE_TRUNC('day', NOW() AT TIME ZONE 'CET') > due_date AND is_completed = false AND is_overdue = false"`
Add systemd service to update due date in app 2023-11-17 12:18:16 +01:00			`'';`
Format code 2024-01-04 14:07:22 +01:00			`serviceConfig = { User = "postgres"; };`
Add systemd service to update due date in app 2023-11-17 12:18:16 +01:00			`partOf = [ "todoapp.service" ];`
			`startAt = "daily";`
			`};`
Add pipeline for todo app deployment 2023-11-12 19:18:41 +01:00			`denbot = {`
			`description = "Thilo's Den discord bot";`
Format code 2024-01-04 14:07:22 +01:00			`wantedBy = [ "multi-user.target" ];`
Add pipeline for todo app deployment 2023-11-12 19:18:41 +01:00			`serviceConfig = {`
			`Type = "simple";`
			`ExecStartPre = [`
			`"${pkgs.nodejs_20}/bin/node dbInit.js"`
			`"${pkgs.nodejs_20}/bin/node deploy-commands.js --token=${config.age.secrets.discord-bot-token.path} --clientId=1142441791459704912"`
			`];`
Format code 2024-01-04 14:07:22 +01:00			`ExecStart =`
			`"${pkgs.nodejs_20}/bin/node index.js --token=${config.age.secrets.discord-bot-token.path}";`
Add pipeline for todo app deployment 2023-11-12 19:18:41 +01:00			`WorkingDirectory = inputs.denbot.packages.${pkgs.system}.default;`
			`Restart = "always";`
			`};`
Add systemd service and ensure db for discord bot 2023-09-10 20:52:11 +02:00			`};`
			`};`

Update default.nix 2023-07-24 14:38:54 +02:00			`users.users.thiloho.openssh.authorizedKeys.keys = [`
Update default.nix 2023-08-11 17:04:19 +02:00			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMkvr+vT7Ik0fjquxb9xQBfVVWJPgrfC+vJZsyG2V+/G thiloho@pc"`
Add server public keys for laptop access 2023-10-14 21:22:17 +02:00			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ5jOELdhQ85uKV8l2QkbLhjdPr142p1AmPzpawaJ7ws thiloho@laptop"`
Update default.nix 2023-07-24 14:38:54 +02:00			`];`

Add server configuration host 2023-07-02 00:18:17 +02:00			`home-manager.users.thiloho = { pkgs, lib, ... }: {`
Format code 2024-01-04 14:07:22 +01:00			`home = { stateVersion = "23.05"; };`
Add server configuration host 2023-07-02 00:18:17 +02:00			`};`
			`system.stateVersion = "23.05";`
Update todos app 2023-11-19 05:11:06 +01:00			`}`