gensokyo-zone/infrastructure
1
0
Fork 0
mirror of https://github.com/gensokyo-zone/infrastructure.git synced 2026-02-09 12:29:19 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions

chore: fmt, feat(syncthing): allow on tailscale

Browse source
This commit is contained in:
Kat Inskip 2024-09-02 23:17:24 -07:00
parent b7f5cd0562
commit b556db56cc
Signed by: kat
GPG key ID: 465E64DECEA8CF0F
7 changed files with 89 additions and 65 deletions
Download patch file Download diff file Expand all files Collapse all files

20
nixos/moonraker.nix
View file

@ -1,16 +1,22 @@
{ config, access, gensokyo-zone, lib, ... }: let
{
config,
access,
gensokyo-zone,
lib,
...
}: let
inherit (lib.modules) mkIf mkDefault;
inherit (gensokyo-zone.lib) domain;
inherit (config.services) klipper;
cfg = config.services.moonraker;
in {
in {
sops.secrets = {
moonraker_cfg = {
sopsFile = ./secrets/moonraker.yaml;
path = "${cfg.stateDir}/config/secrets.conf";
owner = cfg.user;
};
};
};
services = {
moonraker = {
enable = mkDefault true;
@ -19,9 +25,9 @@
group = mkDefault klipper.group;
port = 7125; # it's the default but i'm specifying it anyway
settings = {
"include secrets.conf" = { };
octoprint_compat = { };
history = { };
"include secrets.conf" = {};
octoprint_compat = {};
history = {};
"webcam printer" = let
inherit (config.services.motion.cameras) printercam;
inherit (printercam.settings) camera_id;
@ -46,7 +52,7 @@
trusted_clients =
access.cidrForNetwork.allLocal.all
# XXX: only safe when protected behind vouch!
++ [ "0.0.0.0/0" "::/0" ];
++ ["0.0.0.0/0" "::/0"];
};
machine = {
# disable all machine control