flakes/modules/nixos/services/miniflux/default.nix

{ config, lib, ... }:
{
  options.snowflake.services.miniflux = {
    enable = lib.mkEnableOption "Enable miniflux service";

    domain = lib.mkOption {
      type = lib.types.str;
      default = "";
      description = "Configuration domain to use for the miniflux service";
    };

    adminTokenFile = lib.mkOption {
      description = "Age module containing the ADMIN_USERNAME and ADMIN_PASSWORD to use for miniflux";
    };

    listenPort = lib.mkOption {
      type = lib.types.int;
      description = "Configuration port for the miniflux service to listen on";
      default = 8816;
    };
  };

  config =
    let
      cfg = config.snowflake.services.miniflux;
    in
    lib.mkIf cfg.enable {
      age.secrets.miniflux = {
        inherit (cfg.adminTokenFile) file;
        owner = "miniflux";
        group = "miniflux";
      };

      services.miniflux.enable = true;
      services.miniflux.adminCredentialsFile = config.age.secrets.miniflux.path;

      services.miniflux.config = {
        LISTEN_ADDR = "localhost:${toString cfg.listenPort}";
        BASE_URL = "https://${cfg.domain}";
      };

      services.nginx = {
        virtualHosts = {
          "${cfg.domain}" = {
            serverName = "${cfg.domain}";
            enableACME = true;
            forceSSL = true;
            locations."/" = {
              proxyPass = "http://localhost:${toString cfg.listenPort}";
              extraConfig = ''
                proxy_redirect off;
                proxy_set_header X-Real-IP $remote_addr;
                proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
                proxy_set_header X-Forwarded-Proto $scheme;
              '';
            };
          };
        };
      };
    };
}
feat: add nixos configuration based on snowfall-lib Signed-off-by: Chinmay D. Pai <chinmaydpai@gmail.com> 2024-09-02 18:31:19 +05:30			`{ config, lib, ... }:`
			`{`
			`options.snowflake.services.miniflux = {`
			`enable = lib.mkEnableOption "Enable miniflux service";`

			`domain = lib.mkOption {`
			`type = lib.types.str;`
			`default = "";`
			`description = "Configuration domain to use for the miniflux service";`
			`};`

			`adminTokenFile = lib.mkOption {`
			`description = "Age module containing the ADMIN_USERNAME and ADMIN_PASSWORD to use for miniflux";`
			`};`

			`listenPort = lib.mkOption {`
			`type = lib.types.int;`
			`description = "Configuration port for the miniflux service to listen on";`
			`default = 8816;`
			`};`
			`};`

			`config =`
			`let`
			`cfg = config.snowflake.services.miniflux;`
			`in`
			`lib.mkIf cfg.enable {`
			`age.secrets.miniflux = {`
			`inherit (cfg.adminTokenFile) file;`
			`owner = "miniflux";`
			`group = "miniflux";`
			`};`

			`services.miniflux.enable = true;`
			`services.miniflux.adminCredentialsFile = config.age.secrets.miniflux.path;`

			`services.miniflux.config = {`
			`LISTEN_ADDR = "localhost:${toString cfg.listenPort}";`
			`BASE_URL = "https://${cfg.domain}";`
			`};`

			`services.nginx = {`
			`virtualHosts = {`
			`"${cfg.domain}" = {`
			`serverName = "${cfg.domain}";`
			`enableACME = true;`
			`forceSSL = true;`
			`locations."/" = {`
			`proxyPass = "http://localhost:${toString cfg.listenPort}";`
			`extraConfig = ''`
			`proxy_redirect off;`
			`proxy_set_header X-Real-IP $remote_addr;`
			`proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;`
			`proxy_set_header X-Forwarded-Proto $scheme;`
			`'';`
			`};`
			`};`
			`};`
			`};`
			`};`
			`}`