diff options
author | Elis Hirwing <elis@hirwing.se> | 2019-07-05 12:20:49 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2019-07-05 12:20:49 +0200 |
commit | 823120765ccdd9f210e365f75afa732bffaf0aba (patch) | |
tree | ac5f3fdceabd54c7a7028674eccc678b6e1b1315 | |
parent | 51aa3cc4855c5964a6e71adcf7b79c1a0c23f322 (diff) | |
parent | 6ba90c2aae05ca64acac8ffe01c4c2b72d2be6a8 (diff) | |
download | nixlib-823120765ccdd9f210e365f75afa732bffaf0aba.tar nixlib-823120765ccdd9f210e365f75afa732bffaf0aba.tar.gz nixlib-823120765ccdd9f210e365f75afa732bffaf0aba.tar.bz2 nixlib-823120765ccdd9f210e365f75afa732bffaf0aba.tar.lz nixlib-823120765ccdd9f210e365f75afa732bffaf0aba.tar.xz nixlib-823120765ccdd9f210e365f75afa732bffaf0aba.tar.zst nixlib-823120765ccdd9f210e365f75afa732bffaf0aba.zip |
Merge pull request #64113 from davidtwco/lidarr/users-groups-firewalls
nixos/lidarr: add user/group/openFirewall opts.
-rw-r--r-- | nixos/modules/services/misc/lidarr.nix | 47 |
1 files changed, 40 insertions, 7 deletions
diff --git a/nixos/modules/services/misc/lidarr.nix b/nixos/modules/services/misc/lidarr.nix index 92108ec55088..4c37bd74f150 100644 --- a/nixos/modules/services/misc/lidarr.nix +++ b/nixos/modules/services/misc/lidarr.nix @@ -16,6 +16,30 @@ in defaultText = "pkgs.lidarr"; description = "The Lidarr package to use"; }; + + openFirewall = mkOption { + type = types.bool; + default = false; + description = '' + Open ports in the firewall for Lidarr + ''; + }; + + user = mkOption { + type = types.str; + default = "lidarr"; + description = '' + User account under which Lidarr runs. + ''; + }; + + group = mkOption { + type = types.str; + default = "lidarr"; + description = '' + Group under which Lidarr runs. + ''; + }; }; }; @@ -27,8 +51,8 @@ in serviceConfig = { Type = "simple"; - User = "lidarr"; - Group = "lidarr"; + User = cfg.user; + Group = cfg.group; ExecStart = "${cfg.package}/bin/Lidarr"; Restart = "on-failure"; @@ -37,12 +61,21 @@ in }; }; - users.users.lidarr = { - uid = config.ids.uids.lidarr; - home = "/var/lib/lidarr"; - group = "lidarr"; + networking.firewall = mkIf cfg.openFirewall { + allowedTCPPorts = [ 8686 ]; }; - users.groups.lidarr.gid = config.ids.gids.lidarr; + users.users = mkIf (cfg.user == "lidarr") { + lidarr = { + group = cfg.group; + uid = config.ids.uids.lidarr; + }; + }; + + users.groups = mkIf (cfg.group == "lidarr") { + lidarr = { + gid = config.ids.gids.lidarr; + }; + }; }; } |