From cbfb3fba0912abcd5c8aad40839ce8d139cdd67a Mon Sep 17 00:00:00 2001 From: mc-fucker Date: Sat, 24 Sep 2022 19:19:00 +0200 Subject: [PATCH] changed ihatemoney to podman container --- modules/ihatemoney.nix | 42 +++++++++++++++++++++++++++++------------- 1 file changed, 29 insertions(+), 13 deletions(-) diff --git a/modules/ihatemoney.nix b/modules/ihatemoney.nix index e4d1597..75fe71c 100644 --- a/modules/ihatemoney.nix +++ b/modules/ihatemoney.nix @@ -1,21 +1,9 @@ { ... }: let port = "8000"; + db = "ihatemoney"; in { - services.ihatemoney = { - enable = true; - backend = "postgresql"; - enableAdminDashboard = true; - adminHashedPassword = "pbkdf2:sha256:260000$tfw9DfVw8dLSm90i$b711fd9d5192cc4474f6edc5aa8cbc94ca8f84223434ab190436e21d8d60ef89"; - uwsgiConfig = { http = ":${port}"; }; - defaultSender.email = "ihatemoney@mc-fucker.cool"; - extraConfig = '' - MAIL_SERVER = "mc1.mc-fucker.vpn.mc-fucker.cool" - MAIL_USE_TLS = "True"; - ''; - }; - services.nginx.enable = true; services.nginx.virtualHosts."geld.mc-fucker.cool" = { forceSSL = true; @@ -30,6 +18,34 @@ in defaults.email = "dev@mc-fucker.cool"; }; + virtualisation.oci-containers.containers.ihatemoney = { + image = "9508e0286152"; + environment = { + ACTIVATE_ADMIN_DASHBOARD = "True"; + ACTIVATE_DEMO_PROJECT = "False"; + ALLOW_PUBLIC_PROJECT_CREATION = "False"; + MAIL_DEFAULT_SENDER = "Budget manager "; + MAIL_SERVER = "mc1.mc-fucker.vpn.mc-fucker.cool"; + MAIL_USE_TLS = "True"; + DEBUG = "False"; + }; + ports = [ "${port}:8000" ]; + environmentFiles = [ /etc/nixos/keys/ihatemoney-env ]; + }; + + services.postgresql = { + ensureDatabases = [ db ]; + ensureUsers = [ + { + name = db; + ensurePermissions = { + "DATABASE ${db}" = "ALL PRIVILEGES"; + }; + } + ]; + authentication = "host ${db} ${db} 10.88.0.0/16 md5"; + }; + networking.firewall.allowedTCPPorts = [ 80 443 ]; services.postgresqlBackup.databases = [ "ihatemoney" ];