2 files changed, 48 insertions, 0 deletions
diff --git a/flake.nix b/flake.nix
index 5a04fb3..f8e6fe0 100644
--- a/flake.nix
+++ b/flake.nix
@@ -76,6 +76,7 @@
        ankisyncd = (import ./usecases/server/ankisyncd.nix inputs);
        audit = (import ./usecases/server/audit.nix inputs);
        fail2ban = (import ./usecases/server/fail2ban.nix inputs);
+        gotify-server = (import ./usecases/server/gotify-server.nix inputs);
        monitoringTarget = (import ./usecases/server/monitoring-target.nix inputs);
        radicale = (import ./usecases/server/radicale.nix inputs);
        smartd = (import ./usecases/server/smartd.nix inputs);
@@ -169,6 +170,7 @@
            self.nixosModules.test
            self.nixosModules.profiles.server
            self.nixosModules.usecases.server.ankisyncd
+            self.nixosModules.usecases.server.gotify-server
            self.nixosModules.usecases.server.radicale
            self.nixosModules.usecases.server.zfs
diff --git a/usecases/server/gotify-server.nix b/usecases/server/gotify-server.nix
new file mode 100644
index 0000000..5445827
--- /dev/null
+++ b/usecases/server/gotify-server.nix
@@ -0,0 +1,46 @@
+inputs:
+{ config, ... }:
+{
+  services.gotify = {
+    enable = true;
+    port = 8082;
+  };
+  # TODO: add proper boot notification
+  /*
+  systemd.services.gotify-notify-boot = {
+    after = [ "gotify-server.service" ];
+    wantedBy = [ "multi-user.target" ];
+    restartIfChanged = false;
+    serviceConfig = {
+      Type = "oneshot";
+      # Priority is needed because there is no configuration, hence no default
+      # priority to fallback to
+      ExecStart = let params = lib.cli.toGNUCommandLineShell { } {
+          url = "http://localhost:${toString config.services.gotify.port}";
+          token = "$GOTIFY_TOKEN";
+          priority = 0;
+        };
+        in "${pkgs.gotify-cli}/bin/gotify push ${params} 'The system has booted'";
+      RemainAfterExit = "yes";
+      # Adds lots of security options
+      DynamicUser = "yes";
+      EnvironmentFile = "/etc/nixos/res/gotify-config.env";
+      Restart = "on-failure";
+      RestartSec = "3s";
+    };
+  };
+  */
+  networking.firewall.interfaces.${config.topology.mainVpn.interfaceName}.allowedTCPPorts = [
+    config.services.gotify.port
+  ];
+}

diff --git a/flake.nix b/flake.nix index 5a04fb3..f8e6fe0 100644 --- a/flake.nix +++ b/flake.nix
@@ -76,6 +76,7 @@
76	ankisyncd = (import ./usecases/server/ankisyncd.nix inputs);	76	ankisyncd = (import ./usecases/server/ankisyncd.nix inputs);
77	audit = (import ./usecases/server/audit.nix inputs);	77	audit = (import ./usecases/server/audit.nix inputs);
78	fail2ban = (import ./usecases/server/fail2ban.nix inputs);	78	fail2ban = (import ./usecases/server/fail2ban.nix inputs);
		79	gotify-server = (import ./usecases/server/gotify-server.nix inputs);
79	monitoringTarget = (import ./usecases/server/monitoring-target.nix inputs);	80	monitoringTarget = (import ./usecases/server/monitoring-target.nix inputs);
80	radicale = (import ./usecases/server/radicale.nix inputs);	81	radicale = (import ./usecases/server/radicale.nix inputs);
81	smartd = (import ./usecases/server/smartd.nix inputs);	82	smartd = (import ./usecases/server/smartd.nix inputs);
@@ -169,6 +170,7 @@
169	self.nixosModules.test	170	self.nixosModules.test
170	self.nixosModules.profiles.server	171	self.nixosModules.profiles.server
171	self.nixosModules.usecases.server.ankisyncd	172	self.nixosModules.usecases.server.ankisyncd
		173	self.nixosModules.usecases.server.gotify-server
172	self.nixosModules.usecases.server.radicale	174	self.nixosModules.usecases.server.radicale
173	self.nixosModules.usecases.server.zfs	175	self.nixosModules.usecases.server.zfs
174		176


diff --git a/usecases/server/gotify-server.nix b/usecases/server/gotify-server.nix new file mode 100644 index 0000000..5445827 --- /dev/null +++ b/usecases/server/gotify-server.nix
@@ -0,0 +1,46 @@
		1	inputs:
		2
		3	{ config, ... }:
		4
		5	{
		6	services.gotify = {
		7	enable = true;
		8	port = 8082;
		9	};
		10
		11	# TODO: add proper boot notification
		12
		13	/*
		14	systemd.services.gotify-notify-boot = {
		15	after = [ "gotify-server.service" ];
		16	wantedBy = [ "multi-user.target" ];
		17
		18	restartIfChanged = false;
		19
		20	serviceConfig = {
		21	Type = "oneshot";
		22
		23	# Priority is needed because there is no configuration, hence no default
		24	# priority to fallback to
		25	ExecStart = let params = lib.cli.toGNUCommandLineShell { } {
		26	url = "http://localhost:${toString config.services.gotify.port}";
		27	token = "$GOTIFY_TOKEN";
		28	priority = 0;
		29	};
		30	in "${pkgs.gotify-cli}/bin/gotify push ${params} 'The system has booted'";
		31
		32	RemainAfterExit = "yes";
		33	# Adds lots of security options
		34	DynamicUser = "yes";
		35	EnvironmentFile = "/etc/nixos/res/gotify-config.env";
		36
		37	Restart = "on-failure";
		38	RestartSec = "3s";
		39	};
		40	};
		41	*/
		42
		43	networking.firewall.interfaces.${config.topology.mainVpn.interfaceName}.allowedTCPPorts = [
		44	config.services.gotify.port
		45	];
		46	}