Support all options in modules.nix
This commit is contained in:
parent
42827a0c2c
commit
b0c07f9514
42
module.nix
42
module.nix
@ -9,6 +9,31 @@ in {
|
|||||||
options = {
|
options = {
|
||||||
services.scan-to-gpg = {
|
services.scan-to-gpg = {
|
||||||
enable = mkEnableOption "scan-to-gpg";
|
enable = mkEnableOption "scan-to-gpg";
|
||||||
|
host = mkOption {
|
||||||
|
type = types.str;
|
||||||
|
default = "0.0.0.0";
|
||||||
|
description = "Interface to bind FTP server to";
|
||||||
|
};
|
||||||
|
port = mkOption {
|
||||||
|
type = with types; nullOr port;
|
||||||
|
default = null;
|
||||||
|
description = "Port for FTP server";
|
||||||
|
};
|
||||||
|
user = mkOption {
|
||||||
|
type = with types; nullOr str;
|
||||||
|
default = null;
|
||||||
|
description = "Username for FTP login";
|
||||||
|
};
|
||||||
|
passFile = mkOption {
|
||||||
|
type = with types; nullOr path;
|
||||||
|
default = null;
|
||||||
|
description = "Path to file containing password for FTP login";
|
||||||
|
};
|
||||||
|
output = mkOption {
|
||||||
|
type = types.path;
|
||||||
|
default = "/var/lib/scan-to-gpg";
|
||||||
|
description = "Path to directory where encrypted files are stored in";
|
||||||
|
};
|
||||||
gpgkey = mkOption {
|
gpgkey = mkOption {
|
||||||
type = types.path;
|
type = types.path;
|
||||||
description = "Path to a file containing to GPG public key to encrypt to";
|
description = "Path to a file containing to GPG public key to encrypt to";
|
||||||
@ -26,13 +51,28 @@ in {
|
|||||||
|
|
||||||
serviceConfig = {
|
serviceConfig = {
|
||||||
type = "simple";
|
type = "simple";
|
||||||
ExecStart = "${getExe pkgs.scan-to-gpg} -host 0.0.0.0 -output /var/lib/scan-to-gpg -gpgkey ${cfg.gpgkey}";
|
|
||||||
User = "scan-to-gpg";
|
User = "scan-to-gpg";
|
||||||
Group = "scan-to-gpg";
|
Group = "scan-to-gpg";
|
||||||
StateDirectory = "scan-to-gpg";
|
StateDirectory = "scan-to-gpg";
|
||||||
StateDirectoryMode = "775";
|
StateDirectoryMode = "775";
|
||||||
|
} // mkIf (cfg.passFile != null) {
|
||||||
|
LoadCredential = "pass-file:${cfg.passFile}";
|
||||||
};
|
};
|
||||||
|
|
||||||
|
environment = mkIf (cfg.passFile != null) {
|
||||||
|
PASS_FILE = "%d/pass-file";
|
||||||
|
};
|
||||||
|
|
||||||
|
script = ''
|
||||||
|
${getExe pkgs.scan-to-gpg} -host ${cfg.host} ${
|
||||||
|
optionalString (cfg.port != null) "-port ${toString cfg.port} "
|
||||||
|
}${
|
||||||
|
optionalString (cfg.user != null) "-user ${cfg.user} "
|
||||||
|
}${
|
||||||
|
optionalString (cfg.passFile != null) "-pass <($${PASS_FILE}) "
|
||||||
|
}-output ${cfg.output} -gpgkey ${cfg.gpgkey}
|
||||||
|
'';
|
||||||
|
|
||||||
};
|
};
|
||||||
|
|
||||||
users.users.scan-to-gpg = {
|
users.users.scan-to-gpg = {
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user