summaryrefslogblamecommitdiff
path: root/flake.nix
blob: 2a83e6cb58b2c5063faa84d48598d9f7a0984ff2 (plain) (tree) 
aef8039




































716f68a

aef8039








bd8f4fb

aef8039






























1249cbc



aef8039










1249cbc

aef8039





1249cbc


aef8039



6183c7e


aef8039



6183c7e

d197ea8

aef8039




1249cbc

aef8039














1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36

37

38
39
40
41
42
43
44
45

46

47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76

77
78
79

80
81
82
83
84
85
86
87
88
89

90

91
92
93
94
95

96
97

98
99
100

101
102

103
104
105

106

107

108
109
110
111

112

113
114
115
116
117
118
119
120
121
122
123
124
125
126




































                                                                         
                            







                                                  
                                                





























                                                                                      


                                          









                                                   
                                                                            




                                      

                                                               


                  

                                                               


                                                
                                               
                                                                           



                                    
                                                                                                    













                                                           
{
  inputs = {
    flake-utils.url = "github:numtide/flake-utils";
    naersk.url = "github:nix-community/naersk";
    mozillapkgs = {
      url = "github:mozilla/nixpkgs-mozilla";
      flake = false;
    };
  };

  outputs = { self, nixpkgs, flake-utils, naersk, mozillapkgs }:
    flake-utils.lib.eachDefaultSystem (
      system: let
        pkgs = nixpkgs.legacyPackages."${system}";
        mozilla = pkgs.callPackage (mozillapkgs + "/package-set.nix") {};
        rust = (mozilla.rustChannelOf {
          date = "2022-03-31";
          channel = "nightly";
          sha256 = "k6wD6/2qNQ7rmIvGi1ddtKSTUXjXFbIr0Sg2mqF2nYg=";
        }).rust;

        naersk-lib = naersk.lib."${system}".override {
          cargo = rust;
          rustc = rust;
        };
      in
        rec {
          # `nix build`
          packages.carasite = naersk-lib.buildPackage {
            pname = "carasite";
            root = ./.;
            remapPathPrefix = true;
            buildInputs = with pkgs; [
              git
            ];
            overrideMain = attrs: {
              preBuild = '' 
                cp -r templates /build/dummy-src/
                cp -r statics /build/dummy-src/
              '';

              postInstall = ''
                mv $out/bin/site $out/bin/carasite

                cp -rf $src/blog $out/blog
                cp -rf $src/statics $out/statics
                cp -rf $src/projects $out/projects
              '';

              };
          };
          defaultPackage = packages.carasite;

          # `nix run`
          apps.carasite = flake-utils.lib.mkApp {
            drv = packages.carasite;
          };
          defaultApp = apps.carasite;

          nixosModules.site = { config, lib, ... }: {
            options = {
              cara.services.carasite.enable = lib.mkEnableOption "enable cara's site";
              cara.services.carasite.domain = lib.mkOption {
                type = lib.types.str;
                default = "devcara.com";
                description = "The domain to use";
              };

              cara.services.carasite.port = lib.mkOption {
                type = lib.types.port;
                default = 3000;
                description = "The port to bind to";
              };
            };

            config = lib.mkIf config.cara.services.carasite.enable {
              users.groups.cara-site = {
                members = [ "cara-site" ];
              };
              users.users.cara-site = {
                createHome = true;
                isSystemUser = true;
                home = "/var/lib/cara-site";
                group = "cara-site";
              };

              systemd.services.cara-site = {
                wantedBy = [ "multi-user.target" ];
                environment = {
                  PORT = "${toString (config.cara.services.carasite.port)}";
                };
                serviceConfig = { 
                  User = "cara-site";
                  Group = "cara-site";
                  Restart = "always";
                  WorkingDirectory = "${defaultPackage}";
                  ExecStart = "${defaultPackage}/bin/carasite";
                };
              };

              networking.firewall.allowedTCPPorts = [ 443 80 ];

              services.nginx = {
                enable = true;
                recommendedProxySettings = true;
                recommendedTlsSettings = true; 
                virtualHosts."${config.cara.services.carasite.domain}" = { 
                  forceSSL = true;
                  enableACME = true;

                  locations."/" = {
                    proxyPass = "http://127.0.0.1:${toString (config.cara.services.carasite.port)}";
                  };
                };
              };
            };
          };


          # `nix develop`
          devShell = pkgs.mkShell {
            nativeBuildInputs = with pkgs; [ rustc cargo ];
          };
        }
    );
}
generated by cgit v1.2.3 (git 2.25.1) at 2025-03-12 19:55:01 +0000