nixos-config/services/owntracks.nix

{ config, pkgs, ... }:

let
  frontend-config = builtins.toFile "owntracks-frontend-config.js" ''
    window.owntracks = window.owntracks || {};
    window.owntracks.config = {};
  '';
in {
  virtualisation.oci-containers.containers = {
    owntracks-recorder = {
      # official image does not support aarch64
      # image = "owntracks/recorder";
      image = "easypi/ot-recorder-arm";
      ports = [ "8083:8083" ];
      environment = {
        OTR_HOST = "localhost";
        OTR_PORT = "1883";
        OTR_USER = "owntracks";
        OTR_PASS = ""; # TODO
      };
      # easypi/ot-recorder-arm uses different store location
      # volumes = [ "/var/lib/owntracks/recorder/store:/store" ];
      volumes = [ "/var/lib/owntracks/recorder/store:/var/spool/owntracks/recorder/store" ];
      extraOptions = [
        # TODO systemd doesn't substitute variables because it doesn't run in a shell
        # "-e OTR_PASS=\"$(cat /etc/nixos/secrets/mqtt/owntracks-plain)\""
        "--network=host"
      ];
    };

    owntracks-frontend = {
      image = "owntracks/frontend";
      ports = [ "8085:8085" ];
      environment = {
        SERVER_HOST = "localhost";
        SERVER_PORT = "8083";
        LISTEN_PORT = "8085";
      };
      volumes = [
        "${frontend-config}:/usr/share/nginx/html/config/config.js"
      ];
      extraOptions = [ "--network=host" ];
    };
  };

  services = {
    nginx = {
      virtualHosts."owntracks.felschr.com" = {
        enableACME = true;
        forceSSL = true;
        locations."/".proxyPass = "http://localhost:8085";
        basicAuthFile = "/etc/nixos/secrets/owntracks/htpasswd";
      };
    };
  };

}
feat(rpi4): add owntracks config 2020-12-02 10:33:12 +01:00			`{ config, pkgs, ... }:`

			`let`
			`frontend-config = builtins.toFile "owntracks-frontend-config.js" ''`
			`window.owntracks = window.owntracks \|\| {};`
			`window.owntracks.config = {};`
			`'';`
			`in {`
			`virtualisation.oci-containers.containers = {`
			`owntracks-recorder = {`
			`# official image does not support aarch64`
			`# image = "owntracks/recorder";`
			`image = "easypi/ot-recorder-arm";`
			`ports = [ "8083:8083" ];`
			`environment = {`
			`OTR_HOST = "localhost";`
			`OTR_PORT = "1883";`
			`OTR_USER = "owntracks";`
			`OTR_PASS = ""; # TODO`
			`};`
			`# easypi/ot-recorder-arm uses different store location`
			`# volumes = [ "/var/lib/owntracks/recorder/store:/store" ];`
			`volumes = [ "/var/lib/owntracks/recorder/store:/var/spool/owntracks/recorder/store" ];`
			`extraOptions = [`
			`# TODO systemd doesn't substitute variables because it doesn't run in a shell`
			`# "-e OTR_PASS=\"$(cat /etc/nixos/secrets/mqtt/owntracks-plain)\""`
			`"--network=host"`
			`];`
			`};`

			`owntracks-frontend = {`
			`image = "owntracks/frontend";`
			`ports = [ "8085:8085" ];`
			`environment = {`
			`SERVER_HOST = "localhost";`
			`SERVER_PORT = "8083";`
			`LISTEN_PORT = "8085";`
			`};`
			`volumes = [`
			`"${frontend-config}:/usr/share/nginx/html/config/config.js"`
			`];`
			`extraOptions = [ "--network=host" ];`
			`};`
			`};`

			`services = {`
			`nginx = {`
			`virtualHosts."owntracks.felschr.com" = {`
			`enableACME = true;`
			`forceSSL = true;`
			`locations."/".proxyPass = "http://localhost:8085";`
			`basicAuthFile = "/etc/nixos/secrets/owntracks/htpasswd";`
			`};`
			`};`
			`};`

			`}`