feat(prometheus): scrape home assistant

feat(i3): add clipmenu shortcut
feat: host ledger on ful
2026-03-28 23:31:07 +01:00 · 2023-09-05 19:23:40 +02:00 · 2023-09-05 11:45:33 +02:00 · 2023-09-05 11:45:20 +02:00 · 2023-09-03 22:36:23 +02:00 · 2023-09-03 17:52:37 +02:00
8 changed files with 82 additions and 8 deletions
--- a/configs/i3.nix
+++ b/configs/i3.nix
@@ -212,11 +212,7 @@ in {
        "${modifier}+r" = "mode resize";
        "${modifier}+v" = "split v";
        "${modifier}+w" = "layout tabbed";
-        "${modifier}+q" = "exec ${pkgs.writers.writeDash "newsboat-sync" ''
-          notify-send --app-name="newsboat" "Updating ..."
-          newsboat -x reload
-          notify-send --app-name="newsboat" "Finished updating."
-        ''}";
+        "${modifier}+q" = "exec ${config.services.clipmenu.package}/bin/clipmenu";

        "${modifier}+Return" = "exec ${(defaultApplications pkgs).terminal}";
        "${modifier}+t" = "exec ${(defaultApplications pkgs).fileManager}";
--- a/configs/packages.nix
+++ b/configs/packages.nix
@@ -275,7 +275,7 @@ in {
    libreoffice
    # gnumeric
    dia
-    pandoc
+    unstablePackages.pandoc
    niveumPackages.man-pandoc
    typst
    # proselint
--- a/2
+++ b/2
--- a/secrets.txt
+++ b/secrets.txt
@@ -24,6 +24,7 @@ secrets/kabsa-specus-privateKey.age
 secrets/kabsa-syncthing-cert.age
 secrets/kabsa-syncthing-key.age
 secrets/kfm-password.age
+secrets/ledger-basicAuth.age
 secrets/makanek-retiolum-privateKey-ed25519.age
 secrets/makanek-retiolum-privateKey-rsa.age
 secrets/makanek-specus-privateKey.age
--- a/systems/ful/configuration.nix
+++ b/systems/ful/configuration.nix
@@ -11,6 +11,7 @@ in {
    ./matomo.nix
    ./radio.nix
    ./panoptikon.nix
+    ./ledger.nix
    ../../configs/monitoring.nix
    ../../configs/tor.nix
    ../../configs/save-space.nix
--- a/systems/ful/ledger.nix
+++ b/systems/ful/ledger.nix
@@ -0,0 +1,54 @@
+{
+  config,
+  pkgs,
+  ...
+}: {
+  services.hledger-web = {
+    enable = true;
+    capabilities = {
+      add = true;
+      view = true;
+      manage = false;
+    };
+    serveApi = false; # serve only the JSON API
+    baseUrl = "https://ledger.kmein.de";
+    journalFiles = [
+      "privat.journal"
+    ];
+  };
+
+  systemd.services.hledger-backup = {
+    enable = true;
+    startAt = "hourly";
+    wants = ["network-online.target"];
+    wantedBy = ["multi-user.target"];
+    script = ''
+      ${pkgs.git}/bin/git config user.name "hledger-web"
+      ${pkgs.git}/bin/git config user.email "hledger-web@${config.networking.hostName}"
+      ${pkgs.git}/bin/git commit -am $(date -Ih)
+      ${pkgs.git}/bin/git pull --rebase
+      ${pkgs.git}/bin/git push
+    '';
+    serviceConfig = {
+      User = "hledger";
+      Group = "hledger";
+      WorkingDirectory = config.services.hledger-web.stateDir;
+    };
+  };
+
+  age.secrets = {
+    ledger-basicAuth = {
+      file = ../../secrets/ledger-basicAuth.age;
+      owner = "nginx";
+      group = "nginx";
+      mode = "400";
+    };
+  };
+
+  services.nginx.virtualHosts."ledger.kmein.de" = {
+    enableACME = true;
+    basicAuthFile = config.age.secrets.ledger-basicAuth.path;
+    forceSSL = true;
+    locations."/".proxyPass = "http://127.0.0.1:${toString config.services.hledger-web.port}";
+  };
+}
--- a/systems/makanek/monitoring/default.nix
+++ b/systems/makanek/monitoring/default.nix
@@ -247,6 +247,12 @@ in {
      group = "prometheus";
      mode = "440";
    };
+    home-assistant-token = {
+      file = ../../../secrets/home-assistant-token.age;
+      owner = "prometheus";
+      group = "prometheus";
+      mode = "440";
+    };
  };

  services.prometheus.alertmanagers = [
@@ -315,6 +321,14 @@ in {
        }
      ];
    }
+    {
+      job_name = "home_assistant";
+      scrape_interval = "60s";
+      metrics_path = "/api/prometheus";
+      scheme = "http";
+      static_configs = [{targets = ["zaatar.r:8123"];}];
+      bearer_token_file = config.age.secrets.home-assistant-token.path;
+    }
    {
      job_name = "ful";
      static_configs = [
--- a/systems/zaatar/home-assistant.nix
+++ b/systems/zaatar/home-assistant.nix
@@ -1,9 +1,10 @@
 {config, ...}: let
  port = 8123;
  inherit (import ../../lib) restic;
+  influxPort = 9100;
  volumeName = "home-assistant.bak";
 in {
-  networking.firewall.allowedTCPPorts = [port];
+  networking.firewall.allowedTCPPorts = [port influxPort];

  services.nginx.virtualHosts."home.kmein.r" = {
    locations."/" = {
@@ -11,6 +12,13 @@ in {
    };
  };

+  services.influxdb = {
+    enable = true;
+    extraConfig = {
+      http.bind-address = ":${toString influxPort}";
+    };
+  };
+
  services.restic.backups.niveum = {
    initialize = true;
    inherit (restic) repository;
Author	SHA1	Message	Date
Kierán Meinhardt	eafc87415a	feat(prometheus): scrape home assistant	2023-09-05 19:23:40 +02:00
Kierán Meinhardt	1e37581325	feat(i3): add clipmenu shortcut	2023-09-05 11:45:33 +02:00
Kierán Meinhardt	c63cb4d157	feat: host ledger on ful	2023-09-05 11:45:20 +02:00
Kierán Meinhardt	88257e9ffb	Revert "feat: hledger module" This reverts commit `b9d0258132`.	2023-09-03 22:36:23 +02:00
Kierán Meinhardt	b9d0258132	feat: hledger module	2023-09-03 17:52:37 +02:00
Kierán Meinhardt	53bbc65716	feat(pandoc): use up-to-date version	2023-09-03 17:50:48 +02:00