systems/eldiron/gemini/default.nix


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48

{ lib, config, pkgs, ... }:
{
  options.myServices.gemini.enable = lib.mkEnableOption "enable Gemini capsule";
  config = lib.mkIf config.myServices.gemini.enable {
    myServices.chatonsProperties.hostings.gemini = {
      file.datetime = "2022-08-27T18:00:00";
      hosting = {
        name = "Hébergement Gemini";
        description = "Hébergement de capsules Gemini";
        type = "INSTANCE";
        website = "gemini://immae.eu";
        status.level = "OK";
        status.description = "OK";
        registration.load = "OPEN";
        install.type = "PACKAGE";
      };
      software = {
        name = "stargazer";
        website = "https://git.sr.ht/~zethra/stargazer/";
        license.url = "https://git.sr.ht/~zethra/stargazer/tree/main/LICENSE";
        license.name = "GNU AFFERO GENERAL PUBLIC LICENSE Version 3";
        version = pkgs.stargazer.version;
        source.url = "https://git.sr.ht/~zethra/stargazer/";
      };
    };
    networking.firewall.allowedTCPPorts = [ 1965 ];
    security.acme.certs = {
      "gemini" = {
        group = "stargazer";
        domain = "immae.eu";
        keyType = "rsa4096";
        postRun = ''
          cp -a key.pem key_pkcs8.pem
          sed -i -e "s/ RSA PRIVATE KEY/ PRIVATE KEY/" key_pkcs8.pem
          systemctl restart stargazer.service
        '';
        extraDomainNames = [];
      };
    };
    services.stargazer = {
      enable = true;
      ipLog = true;
      requestTimeout = 0;
      genCerts = false;
      regenCerts = false;
    };
  };
}