financier-nix/module.nix

{ config, lib, ... }:
with lib;
let
  cfg = config.services.financier;
in
{
  imports = [ ];

  options.services.financier = {
    enable = mkEnableOption "Financier";

    hostName = mkOption {
      type = types.str;
      description = ''
        Name for the virtual host for the web server.
      '';
      example = "example.org";
    };

    openFirewall = mkOption {
      description = ''
        Whether to open ports 80 and 443 in the firewall for the web server that is serving financier.
      '';
      type = types.bool;
      default = true;
    };

    package = mkOption {
      type = types.package;
      description = ''
        Financier package to use.
      '';
    };

    server = mkOption {
      type = types.enum [
        "nginx"
        "caddy"
      ];
      description = ''
        The web server to be used for serving Financier. Either "nginx"
        or "caddy".
      '';
      default = "caddy";
      example = "example.org";
    };
  };

  config = mkIf cfg.enable {
    networking.firewall.allowedTCPPorts = mkIf cfg.openFirewall [
      80
      443
    ];

    services.nginx = mkIf (cfg.server == "nginx") {
      enable = true;

      virtualHosts."${cfg.hostName}" = {
        forceSSL = true;
        enableACME = true;
        root = cfg.package;
        locations."/".tryFiles = "$uri $uri/ /index.html";
      };
    };

    services.caddy = mkIf (cfg.server == "caddy") {
      enable = true;

      extraConfig = ''
        ${cfg.hostName} {
          root * ${cfg.package}
          file_server
          try_files {path} {path}/ /index.html
        }
      '';
    };
  };
}
Add option to disable opening ports in the firewall 2024-08-08 09:11:11 +02:00			`{ config, lib, ... }:`
Add NixOS module This module adds the necessary configuration for hosting Financier with nginx. 2020-09-15 11:13:24 +02:00			`with lib;`
Add option to disable opening ports in the firewall 2024-08-08 09:11:11 +02:00			`let`
			`cfg = config.services.financier;`
			`in`
			`{`
Formatting (nixfmt) 2021-07-31 16:58:29 +02:00			`imports = [ ];`
Add NixOS module This module adds the necessary configuration for hosting Financier with nginx. 2020-09-15 11:13:24 +02:00
			`options.services.financier = {`
			`enable = mkEnableOption "Financier";`

			`hostName = mkOption {`
			`type = types.str;`
			`description = ''`
Make Caddy the default web server 2021-02-20 03:21:26 +01:00			`Name for the virtual host for the web server.`
Add NixOS module This module adds the necessary configuration for hosting Financier with nginx. 2020-09-15 11:13:24 +02:00			`'';`
			`example = "example.org";`
			`};`
Make Caddy the default web server 2021-02-20 03:21:26 +01:00
Add option to disable opening ports in the firewall 2024-08-08 09:11:11 +02:00			`openFirewall = mkOption {`
			`description = ''`
			`Whether to open ports 80 and 443 in the firewall for the web server that is serving financier.`
			`'';`
			`type = types.bool;`
			`default = true;`
			`};`

Remove overlay The overlay has been removed and the package financier-dist is now always built with the Nixpkgs version from our flake inputs. Overlays can be applied to any version of Nixpkgs, but our package does not work with all versions of Nixpkgs. For example, we currently built our package with Node 12. The nodejs-12_x has been marked as insecure on the 21.05 branch in May 2022 breaking our build and consequently our module and all configurations that rely on it. Usually, it would be very bad to pin to an old Nixpkgs version as we miss potential security updates. But we build a static website and it is very unlikely that it has any security issues. 2022-06-09 15:03:38 +02:00			`package = mkOption {`
			`type = types.package;`
			`description = ''`
			`Financier package to use.`
			`'';`
			`};`

Make Caddy the default web server 2021-02-20 03:21:26 +01:00			`server = mkOption {`
Add option to disable opening ports in the firewall 2024-08-08 09:11:11 +02:00			`type = types.enum [`
			`"nginx"`
			`"caddy"`
			`];`
Make Caddy the default web server 2021-02-20 03:21:26 +01:00			`description = ''`
			`The web server to be used for serving Financier. Either "nginx"`
			`or "caddy".`
			`'';`
			`default = "caddy";`
			`example = "example.org";`
			`};`
Add NixOS module This module adds the necessary configuration for hosting Financier with nginx. 2020-09-15 11:13:24 +02:00			`};`

			`config = mkIf cfg.enable {`
Add option to disable opening ports in the firewall 2024-08-08 09:11:11 +02:00			`networking.firewall.allowedTCPPorts = mkIf cfg.openFirewall [`
			`80`
			`443`
			`];`
Add NixOS module This module adds the necessary configuration for hosting Financier with nginx. 2020-09-15 11:13:24 +02:00
Make Caddy the default web server 2021-02-20 03:21:26 +01:00			`services.nginx = mkIf (cfg.server == "nginx") {`
			`enable = true;`

			`virtualHosts."${cfg.hostName}" = {`
			`forceSSL = true;`
			`enableACME = true;`
Remove overlay The overlay has been removed and the package financier-dist is now always built with the Nixpkgs version from our flake inputs. Overlays can be applied to any version of Nixpkgs, but our package does not work with all versions of Nixpkgs. For example, we currently built our package with Node 12. The nodejs-12_x has been marked as insecure on the 21.05 branch in May 2022 breaking our build and consequently our module and all configurations that rely on it. Usually, it would be very bad to pin to an old Nixpkgs version as we miss potential security updates. But we build a static website and it is very unlikely that it has any security issues. 2022-06-09 15:03:38 +02:00			`root = cfg.package;`
Make Caddy the default web server 2021-02-20 03:21:26 +01:00			`locations."/".tryFiles = "$uri $uri/ /index.html";`
			`};`
			`};`

			`services.caddy = mkIf (cfg.server == "caddy") {`
			`enable = true;`

Update module for NixOS 22.05 2022-08-04 16:31:59 +02:00			`extraConfig = ''`
Make Caddy the default web server 2021-02-20 03:21:26 +01:00			`${cfg.hostName} {`
Remove overlay The overlay has been removed and the package financier-dist is now always built with the Nixpkgs version from our flake inputs. Overlays can be applied to any version of Nixpkgs, but our package does not work with all versions of Nixpkgs. For example, we currently built our package with Node 12. The nodejs-12_x has been marked as insecure on the 21.05 branch in May 2022 breaking our build and consequently our module and all configurations that rely on it. Usually, it would be very bad to pin to an old Nixpkgs version as we miss potential security updates. But we build a static website and it is very unlikely that it has any security issues. 2022-06-09 15:03:38 +02:00			`root * ${cfg.package}`
Make Caddy the default web server 2021-02-20 03:21:26 +01:00			`file_server`
			`try_files {path} {path}/ /index.html`
			`}`
			`'';`
Add NixOS module This module adds the necessary configuration for hosting Financier with nginx. 2020-09-15 11:13:24 +02:00			`};`
			`};`
			`}`