Compare commits
3 commits
3b4cf54e62
...
a0bc8023a6
| Author | SHA1 | Date | |
|---|---|---|---|
a0bc8023a6
|
|||
|
3158f69ab3
|
|||
|
9cc2ff512c
|
3 changed files with 54 additions and 0 deletions
|
|
@ -27,6 +27,9 @@
|
||||||
modules = {
|
modules = {
|
||||||
system = {
|
system = {
|
||||||
impermanence.enable = false;
|
impermanence.enable = false;
|
||||||
|
services = {
|
||||||
|
nextcloud.enable = true;
|
||||||
|
};
|
||||||
hardware = {
|
hardware = {
|
||||||
nvidia.enable = true;
|
nvidia.enable = true;
|
||||||
bluetooth = {
|
bluetooth = {
|
||||||
|
|
|
||||||
|
|
@ -41,6 +41,9 @@ in {
|
||||||
modules = {
|
modules = {
|
||||||
system = {
|
system = {
|
||||||
impermanence.enable = true;
|
impermanence.enable = true;
|
||||||
|
services = {
|
||||||
|
nextcloud.enable = true;
|
||||||
|
};
|
||||||
programs = {
|
programs = {
|
||||||
editors = {
|
editors = {
|
||||||
emacs.enable = true;
|
emacs.enable = true;
|
||||||
|
|
|
||||||
48
modules/services/nextcloud/module.nix
Normal file
48
modules/services/nextcloud/module.nix
Normal file
|
|
@ -0,0 +1,48 @@
|
||||||
|
{
|
||||||
|
config,
|
||||||
|
lib,
|
||||||
|
pkgs,
|
||||||
|
...
|
||||||
|
}: let
|
||||||
|
inherit (lib.meta) getExe';
|
||||||
|
inherit (lib.modules) mkIf;
|
||||||
|
cfg = config.modules.system.services.nextcloud;
|
||||||
|
in {
|
||||||
|
options.modules.system.services.nextcloud.enable = lib.mkEnableOption "nextcloud";
|
||||||
|
|
||||||
|
config = {
|
||||||
|
systemd.user.services.nextcloud = mkIf cfg.enable {
|
||||||
|
description = "Nextcloud client service";
|
||||||
|
|
||||||
|
# makes the graphical session start this service when it starts
|
||||||
|
wantedBy = ["graphical-session.target"];
|
||||||
|
# when graphical session restarts or gets stopped, this also gets restarted/stopped.
|
||||||
|
partOf = ["graphical-session.target"];
|
||||||
|
# gets started only after graphical session
|
||||||
|
after = ["graphical-session.target"];
|
||||||
|
|
||||||
|
serviceConfig = {
|
||||||
|
ExecStart = "${getExe' pkgs.nextcloud-client "nextcloud"} --background";
|
||||||
|
Restart = "always";
|
||||||
|
RestartSec = 30;
|
||||||
|
|
||||||
|
# User = "cr";
|
||||||
|
# Group = "cr";
|
||||||
|
|
||||||
|
Keyringmode = "shared";
|
||||||
|
DevicePolicy = "closed";
|
||||||
|
PrivateDevices = true;
|
||||||
|
PrivateTmp = true;
|
||||||
|
ProtectClock = true;
|
||||||
|
ProtectControlGroups = true;
|
||||||
|
ProtectControlGroup = true;
|
||||||
|
ProtectKernelLogs = true;
|
||||||
|
ProtectKernelModules = true;
|
||||||
|
ProtectKernelTunables = true;
|
||||||
|
|
||||||
|
ProtectSystem = "strict";
|
||||||
|
SystemCallFilter = "~@clock @cpu-emulation @debug @obsolete @module @mount @raw-io @reboot @swap @privileged";
|
||||||
|
};
|
||||||
|
};
|
||||||
|
};
|
||||||
|
}
|
||||||
Loading…
Add table
Add a link
Reference in a new issue