feat(access): monitoring

2026-02-09 04:19:19 -08:00 · 2024-05-30 15:09:27 -07:00 · 2024-05-30 15:09:27 -07:00 · 0397043f88
commit 0397043f88
parent 511a02931a
13 changed files with 323 additions and 94 deletions
--- a/nixos/access/loki.nix
+++ b/nixos/access/loki.nix
@ -0,0 +1,51 @@
+{
+  config,
+  lib,
+  ...
+}: let
+  inherit (lib.modules) mkIf mkDefault;
+  inherit (config.services) loki;
+  name.shortServer = mkDefault "logs";
+  upstreamName = "loki'access";
+in {
+  config.services.nginx = {
+    # TODO: gRPC port?
+    upstreams'.${upstreamName}.servers = {
+      local = {
+        enable = mkDefault loki.enable;
+        addr = mkDefault "localhost";
+        port = mkIf loki.enable (mkDefault loki.configuration.server.http_listen_port);
+      };
+      service = {upstream, ...}: {
+        enable = mkIf upstream.servers.local.enable (mkDefault false);
+        accessService = {
+          name = "loki";
+        };
+      };
+    };
+    virtualHosts = let
+      copyFromVhost = mkDefault "loki";
+      vouch.enable = mkDefault true;
+      locations = {
+        "/" = {
+          proxy.enable = true;
+        };
+      };
+    in {
+      loki = {
+        inherit name locations vouch;
+        proxy.upstream = mkDefault upstreamName;
+      };
+      loki'local = {
+        inherit name locations vouch;
+        ssl.cert = {
+          inherit copyFromVhost;
+        };
+        proxy = {
+          inherit copyFromVhost;
+        };
+        local.enable = mkDefault true;
+      };
+    };
+  };
+}