feat: sentinella: some

nixos/system/hectic-lab/hectic-lab.nix

@@ -100,12 +100,12 @@ in {
     ];
   };
 
-  sops.secrets."mailserver/security/hashedPassword"     = {};
-  sops.secrets."mailserver/yukkop/hashedPassword"       = {};
+  sops.secrets."mailserver/security/hashedPassword"      = {};
+  sops.secrets."mailserver/yukkop/hashedPassword"        = {};
   sops.secrets."mailserver/daniil-perlyk/hashedPassword" = {};
-  sops.secrets."mailserver/snuff/hashedPassword"        = {};
-  sops.secrets."mailserver/antoshka/hashedPassword"     = {};
-  sops.secrets."mailserver/founders/hashedPassword"     = {};
+  sops.secrets."mailserver/snuff/hashedPassword"         = {};
+  sops.secrets."mailserver/antoshka/hashedPassword"      = {};
+  sops.secrets."mailserver/founders/hashedPassword"      = {};
 
   services.mailserver = {
     enable = true;

nixos/system/hectic-lab/sentinèlla.nix

@@ -5,19 +5,12 @@
   domain,
   sslOpts,
   ...
-}: { ... }: let
-  port = 5869;
-in {
+}: { ... }: {
   hectic.services."sentinèlla" = {
-    probe = {
-      enable = true;
-      inherit port;
-    };
+    probe.enable = true;
     watcher = {
-      enable              = true;
-      peersDns            = "peers.${domain}";
-      peersPort           = port;
-      pollingIntervalSec  = 60;
+      enable             = true;
+      pollingIntervalSec = 60;
       # TG_TOKEN= and TG_CHAT_ID= are read from sus/sentinella-default.yaml
       # (auto-declared by the module as sops.secrets."sentinèlla/watcher/environment")
     };
@@ -27,7 +20,7 @@ in {
     virtualHosts."probe.${domain}" = sslOpts // {
       forceSSL = true;
       locations."/" = {
-        proxyPass = "http://127.0.0.1:${builtins.toString port}";
+        proxyPass = "http://127.0.0.1:5988";
       };
     };
   };