Lithospherical/nix-config
1
0
Fork 0
forked from jan-leila/nix-config
Code Pull requests Activity

feat: added per service enable options for fail2ban configs

Browse source
This commit is contained in:
Leyla Becker 2025-10-25 02:37:53 -05:00
parent ecec04a9ce
commit a8af8930fa
4 changed files with 59 additions and 31 deletions
Download patch file Download diff file Expand all files Collapse all files

2
configurations/nixos/defiant/configuration.nix
View file

@ -310,7 +310,7 @@
forgejo = { forgejo = {
enable = true; enable = true;
domain = "git.jan-leila.com"; reverseProxy.domain = "git.jan-leila.com";
}; };
searx = { searx = {

11
modules/nixos-modules/server/forgejo/fail2ban.nix
View file

@ -4,7 +4,16 @@
pkgs, pkgs,
... ...
}: { }: {
config = lib.mkIf (config.services.forgejo.enable && config.services.fail2ban.enable) { options.services.forgejo = {
fail2ban = {
enable = lib.mkOption {
type = lib.types.bool;
default = config.services.forgejo.enable && config.services.fail2ban.enable;
};
};
};
config = lib.mkIf config.services.forgejo.fail2ban.enable {
environment.etc = { environment.etc = {
"fail2ban/filter.d/forgejo.local".text = lib.mkIf config.services.forgejo.enable ( "fail2ban/filter.d/forgejo.local".text = lib.mkIf config.services.forgejo.enable (
pkgs.lib.mkDefault (pkgs.lib.mkAfter '' pkgs.lib.mkDefault (pkgs.lib.mkAfter ''

14
modules/nixos-modules/server/home-assistant/fail2ban.nix
View file

@ -3,8 +3,17 @@
pkgs, pkgs,
config, config,
... ...
}: }: {
lib.mkIf (config.services.fail2ban.enable && config.services.home-assistant.enable) { options.services.home-assistant = {
fail2ban = {
enable = lib.mkOption {
type = lib.types.bool;
default = config.services.fail2ban.enable && config.services.home-assistant.enable;
};
};
};
config = lib.mkIf config.services.home-assistant.fail2ban.enable {
environment.etc = { environment.etc = {
"fail2ban/filter.d/hass.local".text = ( "fail2ban/filter.d/hass.local".text = (
pkgs.lib.mkDefault (pkgs.lib.mkAfter '' pkgs.lib.mkDefault (pkgs.lib.mkAfter ''
@ -36,4 +45,5 @@ lib.mkIf (config.services.fail2ban.enable && config.services.home-assistant.enab
}; };
}; };
}; };
};
} }

11
modules/nixos-modules/server/immich/fail2ban.nix
View file

@ -4,7 +4,16 @@
pkgs, pkgs,
... ...
}: { }: {
config = lib.mkIf (config.services.fail2ban.enable && config.services.immich.enable) { options.services.immich = {
fail2ban = {
enable = lib.mkOption {
type = lib.types.bool;
default = config.services.fail2ban.enable && config.services.immich.enable;
};
};
};
config = lib.mkIf config.services.immich.fail2ban.enable {
environment.etc = { environment.etc = {
"fail2ban/filter.d/immich.local".text = pkgs.lib.mkDefault (pkgs.lib.mkAfter '' "fail2ban/filter.d/immich.local".text = pkgs.lib.mkDefault (pkgs.lib.mkAfter ''
[Definition] [Definition]