feat: adds borgbackup job for grafana and set SSH port

2025-12-04 06:50:14 +01:00 · 2025-10-07 13:05:26 +02:00 · 2025-10-07 13:05:26 +02:00 · 9c9a665f68
commit 9c9a665f68
parent af5ed3080c
1 changed files with 30 additions and 0 deletions
--- a/modules/services/forgejo.nix
+++ b/modules/services/forgejo.nix
@ -2,11 +2,14 @@
  lib,
  pkgs,
  config,
  host,
  username,
  ...
 }:
 let
  cfg = config.services.forgejo;
  srv = cfg.settings.server;
  baseRepo = "ssh://liv@dandelion:9123/spinners/rootvol/backups/${host}";
 in
 {
  services = {
@ -21,6 +24,8 @@ in
          # You need to specify this to remove the port from URLs in the web UI.
          ROOT_URL = "https://${srv.DOMAIN}/";
          HTTP_PORT = 3050;
          DISABLE_SSH = false;
          SSH_PORT = 2222;
        };
        # You can temporarily allow registration to create an admin user.
        service.DISABLE_REGISTRATION = true;
@ -70,6 +75,31 @@ in
        proxyWebsockets = true;
      };
    };
    borgbackup.jobs."violet-forgejo" = {
      paths = [ "/var/lib/forgejo" ];
      repo = "${baseRepo}/var-forgejo";
      encryption.mode = "none";
      compression = "auto,zstd";
      startAt = "daily";
      preHook = ''
        systemctl stop forgejo
      '';
      postHook = ''
        systemctl start forgejo
        if [ $exitStatus -eq 2 ]; then
          ${pkgs.ntfy-sh}/bin/ntfy send https://notify.liv.town/${host} "borgbackup: ${host} backup (forgejo) failed with errors"
        else
          ${pkgs.ntfy-sh}/bin/ntfy send https://notify.liv.town/${host} "borgbackup: ${host} backup (forgejo) completed succesfully with exit status $exitStatus"
        fi
      '';
      user = "root";
      extraCreateArgs = [
        "--stats"
      ];
      environment = {
        BORG_RSH = "ssh -p 9123 -i /home/${username}/.ssh/id_ed25519";
      };
    };
  };
  # systemd.services.forgejo.preStart = let
  #   adminCmd = "${lib.getExe cfg.package} admin user";