blob: 7052f047c29ce8757daaca42402639f664d725be (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
|
# This module defines an on-demand minecraft server service which turns off the
# server when it's not being used.
{
config,
lib,
pkgs,
...
}: let
inherit (lib) mkIf mkEnableOption;
cfg = config.services.forsvarsarper;
in {
options.services.forsvarsarper.enable = mkEnableOption "daily scan for tests";
config = mkIf cfg.enable {
# Create a user to run the server under.
users.users.forsvarsarper = {
description = "Runs daily scan for tests";
group = "forsvarsarper";
isSystemUser = true;
home = "/srv/forsvarsarper";
createHome = true;
};
users.groups.forsvarsarper = {};
age.secrets.forsvarsarper-env = {
file = ../../../secrets/forsvarsarper.env.age;
owner = config.users.users.forsvarsarper.name;
group = config.users.users.forsvarsarper.group;
mode = "0440";
};
# Create a service which simply runs script. This will be invoked by our timer.
systemd.services.forsvarsarper = {
serviceConfig = {
# We only want to run this once every time the timer triggers it.
Type = "oneshot";
# Run as the user we created above.
User = "forsvarsarper";
Group = "forsvarsarper";
WorkingDirectory = config.users.users.forsvarsarper.home;
};
script = let
python3' = pkgs.python3.withPackages (ps: [ps.requests]);
in ''
# Load the secret environment variables.
export $(grep -v '^#' ${config.age.secrets.forsvarsarper-env.path} | xargs)
# Kick off.
exec ${python3'}/bin/python3 ${./script.py}
'';
};
# Create a timer to activate our oneshot service.
systemd.timers.forsvarsarper = {
wantedBy = ["timers.target"];
partOf = ["forsvarsarper.service"];
after = ["network-online.target"];
wants = ["network-online.target"];
timerConfig = {
OnCalendar = "*-*-* 8:00:00";
Unit = "forsvarsarper.service";
};
};
};
}
|
