nix/modules/nixos/deno-netlify-ddns-client.nix

92 lines
2.7 KiB
Nix
Raw Normal View History

2024-09-06 09:04:32 -05:00
{
lib,
config,
pkgs,
...
}: let
inherit (lib) mkEnableOption mkOption types mkIf;
inherit (lib.strings) optionalString;
cfg = config.services.deno-netlify-ddns-client;
in {
options.services.deno-netlify-ddns-client = {
enable = mkEnableOption "Enable the deno-netlify-ddns client.";
username = mkOption {
type = types.str;
};
passwordFile = mkOption {
type = types.str;
};
endpoint = mkOption {
type = types.str;
default = "https://netlify-ddns.deno.dev";
};
ipv4 = mkOption {
type = types.bool;
default = true;
};
ipv6 = mkOption {
type = types.bool;
default = true;
};
requestTimeout = mkOption {
type = types.int;
description = "The maximum number of seconds before the HTTP request times out.";
default = 30;
};
afterBootTime = mkOption {
type = types.str;
description = "A systemd.timers timespan. This option corresponds to the OnBootSec field in the timerConfig.";
default = "5m";
};
every = mkOption {
type = types.str;
description = "A systemd.timers timespan. This option corresponds to the OnUnitActiveSec field in the timerConfig.";
default = "5m";
};
};
config = {
systemd.timers.deno-netlify-ddns-client = {
enable = mkIf cfg.enable true;
after = ["network.target"];
wantedBy = ["timers.target"];
timerConfig = {
OnBootSec = cfg.afterBootTime;
OnUnitActiveSec = cfg.every;
Unit = "deno-netlify-ddns-client.service";
};
};
systemd.services.deno-netlify-ddns-client = {
enable = mkIf cfg.enable true;
after = ["network.target"];
script = ''
set -eu
password="$(cat "${cfg.passwordFile}")"
${optionalString cfg.ipv4 ''
2024-09-14 07:27:40 -05:00
"${pkgs.curl}/bin/curl" -4 -s \
-vvv \
2024-09-06 09:04:32 -05:00
-X POST \
--max-time ${toString cfg.requestTimeout} \
2024-09-06 09:04:32 -05:00
-u "${cfg.username}:''${password}" \
2024-09-14 07:27:40 -05:00
-L "${cfg.endpoint}/v1/netlify-ddns/replace-all-relevant-user-dns-records" \
| "${pkgs.ripgrep}/bin/ripgrep" --fixed-strings "''${password}" -r "[REDACTED]"
2024-09-06 09:04:32 -05:00
''}
${optionalString cfg.ipv6 ''
${pkgs.curl}/bin/curl -6 -s \
2024-09-14 07:27:40 -05:00
-vvv \
2024-09-06 09:04:32 -05:00
-X POST \
--max-time ${toString cfg.requestTimeout} \
2024-09-06 09:04:32 -05:00
-u "${cfg.username}:''${password}" \
2024-09-14 07:27:40 -05:00
-L "${cfg.endpoint}/v1/netlify-ddns/replace-all-relevant-user-dns-records" \
| "${pkgs.ripgrep}/bin/ripgrep" --fixed-strings "''${password}" -r "[REDACTED]"
2024-09-06 09:04:32 -05:00
''}
'';
serviceConfig = {
Type = "oneshot";
User = "root";
};
};
};
}