Cian-H/My_NixOS_Config
1
0
Fork 0
mirror of https://github.com/Cian-H/My_NixOS_Config.git synced 2025-12-22 15:01:57 +00:00
Code Issues Packages Projects Releases Wiki Activity

Added properly configured vikunja container

Browse Source
This commit is contained in:
Cian Hughes
2025-01-30 00:13:28 +00:00
parent cbfb678ae7
commit c79f7bdb4e
4 changed files with 30 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
.sops.yaml Normal file
View File

@@ -0,0 +1,7 @@
keys:
- &host_key age15x4h66uk6ct3436e6r4l0tkpf86e7jzl3lqd2acndq2jjvq5za3stqg2fy
creation_rules:
- path_regex: secrets\.yaml$
key_groups:
- age:
- *host_key

12
flake.nix
View File

@@ -9,6 +9,8 @@
# Home manager # Home manager
home-manager.url = "github:nix-community/home-manager/release-24.11"; home-manager.url = "github:nix-community/home-manager/release-24.11";
home-manager.inputs.nixpkgs.follows = "nixpkgs"; home-manager.inputs.nixpkgs.follows = "nixpkgs";
# Add sops for secret management
sops-nix.url = "github:Mic92/sops-nix";
# add phinger hyprcursor flake # add phinger hyprcursor flake
hyprcursor-phinger.url = "github:jappie3/hyprcursor-phinger"; hyprcursor-phinger.url = "github:jappie3/hyprcursor-phinger";
# add zen browser flake # add zen browser flake
@@ -122,6 +124,16 @@
}; };
}; };
modules = [ modules = [
inputs.sops-nix.homeManagerModules.sops
{
sops = {
defaultSopsFile = ./secrets.yaml;
secrets = {
# Define your secrets here
vikunja_jwtsecret = {};
};
};
}
./home-manager/homeserver.nix ./home-manager/homeserver.nix
]; ];
}; };

29
home-manager/homeserver/containers/work_tools.nix
View File

@@ -10,29 +10,20 @@
services.podman.containers = { services.podman.containers = {
vikunja = { vikunja = {
image = "docker.io/vikunja/vikunja:latest"; image = "docker.io/vikunja/vikunja:latest";
autoUpdate = "registry";
environment = { environment = {
VIKUNJA_SERVICE_JWTSECRET = "<a super secure random secret>"; VIKUNJA_SERVICE_JWTSECRET = config.sops.secrets.vikunja_jwt_secret.path;
VIKUNJA_SERVICE_PUBLICURL = "http://bulba.space/"; VIKUNJA_SERVICE_PUBLICURL = "http://bulba.space/";
# Note the default path is /app/vikunja/vikunja.db.
# This config variable moves it to a different folder so you can use a volume and
# store the database file outside the container so state is persisted even if the container is destroyed.
VIKUNJA_DATABASE_PATH = "/db/vikunja.db"; VIKUNJA_DATABASE_PATH = "/db/vikunja.db";
}; };
environmentFiles = [
config.sops.secrets.vikunja_jwt_secret.path
];
volumes = [
"/home/cianh/vikunja/files:/app/vikunja/files"
"/home/cianh/vikunja/db:/db"
];
ports = ["3456:3456"];
}; };
}; };
# vikunja:
# image: vikunja/vikunja
# environment:
# VIKUNJA_SERVICE_JWTSECRET: <a super secure random secret>
# VIKUNJA_SERVICE_PUBLICURL: http://<your public frontend url with slash>/
# # Note the default path is /app/vikunja/vikunja.db.
# # This config variable moves it to a different folder so you can use a volume and
# # store the database file outside the container so state is persisted even if the container is destroyed.
# VIKUNJA_DATABASE_PATH: /db/vikunja.db
# ports:
# - 3456:3456
# volumes:
# - ./files:/app/vikunja/files
# - ./db:/db
# restart: unless-stopped
} }

1
home-manager/homeserver/packages.nix
View File

@@ -20,6 +20,7 @@
lua54Packages.lua lua54Packages.lua
luajitPackages.luarocks luajitPackages.luarocks
nodejs-slim nodejs-slim
sops
stylua stylua
]) ])
++ (with unstablePkgs; [ ++ (with unstablePkgs; [