gensokyo-zone/infrastructure
1
0
Fork 0
mirror of https://github.com/gensokyo-zone/infrastructure.git synced 2026-02-09 12:29:19 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions

services/syncplay: Using custom service now

Browse source
This commit is contained in:
kat witch 2021-04-05 01:24:26 +01:00
parent b1c18bc802
commit 88667142c9
No known key found for this signature in database
GPG key ID: 1B477797DCA5EC72
1 changed files with 16 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

23
services/syncplay.nix
View file

@ -1,4 +1,4 @@
{ config, pkgs, ... }:
{ config, pkgs, witch, ... }:
{
users.users.syncplay = { isSystemUser = true; };
@ -17,13 +17,22 @@
cname.target = "athame.kittywit.ch.";
};
services.syncplay = {
enable = true;
user = "syncplay";
group = "sync-cert";
certDir = "/var/lib/acme/sync.kittywit.ch/";
};
systemd.services.syncplay = {
environment = {
SYNCPLAY_PASSWORD = witch.secrets.hosts.athame.syncplay.password;
SYNCPLAY_SALT = witch.secrets.hosts.athame.syncplay.salt;
};
description = "Syncplay Service";
wantedBy = [ "multi-user.target" ];
after = [ "network-online.target " ];
serviceConfig = {
ExecStart =
"${pkgs.syncplay}/bin/syncplay-server --port 8999 --tls /var/lib/acme/sync.kittywit.ch/ --disable-ready";
User = "syncplay";
Group = "sync-cert";
};
};
security.acme.certs."sync.kittywit.ch".postRun = ''
cp key.pem privkey.pem
chown acme:voice-cert privkey.pem'';