systems/zaatar/atuin.nix

{
  config,
  pkgs,
  ...
}: let
  inherit (import ../../lib) tmpfilesConfig;
in {
  services.postgresql = {
    enable = true;
    dataDir = "/var/state/postgresql/${config.services.postgresql.package.psqlSchema}";
    ensureDatabases = ["atuin"];
    ensureUsers = [
      {
        name = "atuin";
        ensurePermissions."DATABASE atuin" = "ALL PRIVILEGES";
      }
    ];
  };

  services.postgresqlBackup = {
    enable = true;
    databases = ["atuin"];
  };

  systemd.tmpfiles.rules = [
    (tmpfilesConfig {
      type = "d";
      path = "/var/state/postgresql";
      mode = "0700";
      user = "postgres";
      group = "postgres";
    })
  ];

  users.groups.atuin = {};
  users.users.atuin = {
    isSystemUser = true;
    group = "atuin";
    home = "/run/atuin";
    createHome = true;
  };

  systemd.services.atuin = {
    wantedBy = ["multi-user.target"];
    environment = {
      ATUIN_HOST = "0.0.0.0";
      ATUIN_PORT = "8888";
      ATUIN_OPEN_REGISTRATION = "true";
      ATUIN_DB_URI = "postgres:///atuin";
    };
    serviceConfig = {
      User = "atuin";
      ExecStart = "${pkgs.atuin}/bin/atuin server start";
      Restart = "on-failure";
    };
  };
  networking.firewall.allowedTCPPorts = [8888];
}
feat: convert to flake feat(zaatar): convert to flake feat(tahina, tabula): convert to flake feat(makanek): convert to flake feat(manakish, zaatar): convert to flake feat(ci): build flake systems fix: ci build feat: secrets via submodule foo foo foo 2023-02-22 10:02:55 +01:00			`{`
			`config,`
			`pkgs,`
			`...`
			`}: let`
			`inherit (import ../../lib) tmpfilesConfig;`
feat: atuin 2022-11-30 10:21:59 +01:00			`in {`
			`services.postgresql = {`
			`enable = true;`
			`dataDir = "/var/state/postgresql/${config.services.postgresql.package.psqlSchema}";`
			`ensureDatabases = ["atuin"];`
			`ensureUsers = [`
			`{`
			`name = "atuin";`
			`ensurePermissions."DATABASE atuin" = "ALL PRIVILEGES";`
			`}`
			`];`
			`};`

feat(postgresql): enable backup 2022-12-03 08:25:47 +01:00			`services.postgresqlBackup = {`
			`enable = true;`
			`databases = ["atuin"];`
			`};`

feat: atuin 2022-11-30 10:21:59 +01:00			`systemd.tmpfiles.rules = [`
			`(tmpfilesConfig {`
			`type = "d";`
			`path = "/var/state/postgresql";`
			`mode = "0700";`
			`user = "postgres";`
			`group = "postgres";`
			`})`
			`];`

			`users.groups.atuin = {};`
			`users.users.atuin = {`
			`isSystemUser = true;`
			`group = "atuin";`
			`home = "/run/atuin";`
			`createHome = true;`
			`};`

			`systemd.services.atuin = {`
			`wantedBy = ["multi-user.target"];`
			`environment = {`
			`ATUIN_HOST = "0.0.0.0";`
			`ATUIN_PORT = "8888";`
			`ATUIN_OPEN_REGISTRATION = "true";`
			`ATUIN_DB_URI = "postgres:///atuin";`
			`};`
			`serviceConfig = {`
			`User = "atuin";`
feat: convert to flake feat(zaatar): convert to flake feat(tahina, tabula): convert to flake feat(makanek): convert to flake feat(manakish, zaatar): convert to flake feat(ci): build flake systems fix: ci build feat: secrets via submodule foo foo foo 2023-02-22 10:02:55 +01:00			`ExecStart = "${pkgs.atuin}/bin/atuin server start";`
feat(atuin): restart on failure 2022-12-31 07:23:01 +01:00			`Restart = "on-failure";`
feat: atuin 2022-11-30 10:21:59 +01:00			`};`
			`};`
			`networking.firewall.allowedTCPPorts = [8888];`
			`}`