hectic-lab/util.nix
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(hectic-lab): enable sentinèlla watcher service

Browse Source 
Enable the p2p watcher alongside the existing probe. Peers are discovered
via DNS name peers.hectic-lab.com. TG credentials are loaded from a SOPS
secret sentinèlla/watcher/environment (to be populated with TG_TOKEN and
TG_CHAT_ID).
This commit is contained in:
yukkop
2026-04-26 22:04:35 +00:00
parent 6035397e9b
commit 4fae68764c
1 changed files with 18 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
nixos/system/hectic-lab/sentinèlla.nix
View File

@@ -5,15 +5,29 @@
domain, domain,
sslOpts, sslOpts,
... ...
}: let }: { config, ... }: let
port = 5869; port = 5869;
in { in {
hectic = { hectic.services."sentinèlla" = {
services."sentinèlla".probe = { probe = {
enable = true; enable = true;
inherit port; inherit port;
}; };
watcher = {
enable = true;
peersDns = "peers.${domain}";
peersPort = port;
pollingIntervalSec = 60;
# TG_TOKEN= and TG_CHAT_ID= are set via this environment file
# Add the following to sus/hectic-lab.yaml under sentinèlla/watcher/:
# environment: |
# TG_TOKEN=<bot-token>
# TG_CHAT_ID=<chat-id>
environmentFile = config.sops.secrets."sentinèlla/watcher/environment".path;
}; };
};
sops.secrets."sentinèlla/watcher/environment" = {};
services.nginx = { services.nginx = {
virtualHosts."probe.${domain}" = sslOpts // { virtualHosts."probe.${domain}" = sslOpts // {