2024-09-06 09:04:32 -05:00
|
|
|
{
|
|
|
|
|
lib,
|
|
|
|
|
config,
|
|
|
|
|
pkgs,
|
|
|
|
|
...
|
|
|
|
|
}: let
|
|
|
|
|
inherit (lib) mkEnableOption mkOption types mkIf;
|
|
|
|
|
inherit (lib.strings) optionalString;
|
|
|
|
|
cfg = config.services.deno-netlify-ddns-client;
|
|
|
|
|
in {
|
|
|
|
|
options.services.deno-netlify-ddns-client = {
|
|
|
|
|
enable = mkEnableOption "Enable the deno-netlify-ddns client.";
|
|
|
|
|
username = mkOption {
|
|
|
|
|
type = types.str;
|
|
|
|
|
};
|
|
|
|
|
passwordFile = mkOption {
|
|
|
|
|
type = types.str;
|
|
|
|
|
};
|
|
|
|
|
endpoint = mkOption {
|
|
|
|
|
type = types.str;
|
|
|
|
|
default = "https://netlify-ddns.deno.dev";
|
|
|
|
|
};
|
|
|
|
|
ipv4 = mkOption {
|
|
|
|
|
type = types.bool;
|
|
|
|
|
default = true;
|
|
|
|
|
};
|
|
|
|
|
ipv6 = mkOption {
|
|
|
|
|
type = types.bool;
|
|
|
|
|
default = true;
|
|
|
|
|
};
|
|
|
|
|
requestTimeout = mkOption {
|
|
|
|
|
type = types.int;
|
|
|
|
|
description = "The maximum number of seconds before the HTTP request times out.";
|
|
|
|
|
default = 30;
|
|
|
|
|
};
|
|
|
|
|
afterBootTime = mkOption {
|
|
|
|
|
type = types.str;
|
|
|
|
|
description = "A systemd.timers timespan. This option corresponds to the OnBootSec field in the timerConfig.";
|
|
|
|
|
default = "5m";
|
|
|
|
|
};
|
|
|
|
|
every = mkOption {
|
|
|
|
|
type = types.str;
|
|
|
|
|
description = "A systemd.timers timespan. This option corresponds to the OnUnitActiveSec field in the timerConfig.";
|
|
|
|
|
default = "5m";
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
config = {
|
|
|
|
|
systemd.timers.deno-netlify-ddns-client = {
|
|
|
|
|
enable = mkIf cfg.enable true;
|
|
|
|
|
after = ["network.target"];
|
|
|
|
|
wantedBy = ["timers.target"];
|
|
|
|
|
timerConfig = {
|
|
|
|
|
OnBootSec = cfg.afterBootTime;
|
|
|
|
|
OnUnitActiveSec = cfg.every;
|
|
|
|
|
Unit = "deno-netlify-ddns-client.service";
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
systemd.services.deno-netlify-ddns-client = {
|
|
|
|
|
enable = mkIf cfg.enable true;
|
|
|
|
|
after = ["network.target"];
|
|
|
|
|
script = ''
|
|
|
|
|
set -eu
|
|
|
|
|
password="$(cat "${cfg.passwordFile}")"
|
|
|
|
|
${optionalString cfg.ipv4 ''
|
2024-09-14 07:27:40 -05:00
|
|
|
"${pkgs.curl}/bin/curl" -4 -s \
|
|
|
|
|
-vvv \
|
2024-09-06 09:04:32 -05:00
|
|
|
-X POST \
|
2024-09-06 15:34:18 -05:00
|
|
|
--max-time ${toString cfg.requestTimeout} \
|
2024-09-06 09:04:32 -05:00
|
|
|
-u "${cfg.username}:''${password}" \
|
2024-09-14 09:49:35 -05:00
|
|
|
-L "${cfg.endpoint}/v1/netlify-ddns/replace-all-relevant-user-dns-records" 2>&1 \
|
2024-09-14 09:43:09 -05:00
|
|
|
| "${pkgs.sd}/bin/sd" --fixed-strings "''${password}" "[REDACTED]" \
|
|
|
|
|
| "${pkgs.sd}/bin/sd" -f i "Authorization: .*" "Authorization: [REST OF LINE REDACTED]"
|
2024-09-06 09:04:32 -05:00
|
|
|
''}
|
|
|
|
|
${optionalString cfg.ipv6 ''
|
|
|
|
|
${pkgs.curl}/bin/curl -6 -s \
|
2024-09-14 07:27:40 -05:00
|
|
|
-vvv \
|
2024-09-06 09:04:32 -05:00
|
|
|
-X POST \
|
2024-09-06 15:34:18 -05:00
|
|
|
--max-time ${toString cfg.requestTimeout} \
|
2024-09-06 09:04:32 -05:00
|
|
|
-u "${cfg.username}:''${password}" \
|
2024-09-14 09:49:35 -05:00
|
|
|
-L "${cfg.endpoint}/v1/netlify-ddns/replace-all-relevant-user-dns-records" 2>&1 \
|
2024-09-14 09:43:09 -05:00
|
|
|
| "${pkgs.sd}/bin/sd" --fixed-strings "''${password}" "[REDACTED]" \
|
|
|
|
|
| "${pkgs.sd}/bin/sd" -f i "Authorization: .*" "Authorization: [REST OF LINE REDACTED]"
|
2024-09-06 09:04:32 -05:00
|
|
|
''}
|
|
|
|
|
'';
|
|
|
|
|
serviceConfig = {
|
|
|
|
|
Type = "oneshot";
|
|
|
|
|
User = "root";
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
}
|
