privatevoid.net/depot
1
1
Fork 0
Code Issues 18 Pull requests 2 Projects 3 Releases Packages Wiki Activity Actions
depot/cluster/services/storage/default.nix

96 lines
2.1 KiB
Nix
Raw Blame History

{ config, depot, lib, ... }:
let
meshIpForNode = name: config.vars.mesh.${name}.meshIp;
in
{
imports = [
./options.nix
];
services.storage = {
nodes = {
external = [ "prophet" ];
heresy = [ "VEGAS" ];
garage = [ "grail" "prophet" "VEGAS" ];
garageConfig = [ "grail" "prophet" "VEGAS" ];
garageInternal = [ "VEGAS" ];
garageExternal = [ "grail" "prophet" ];
};
nixos = {
external = [
./external.nix
./s3ql-upgrades.nix
];
heresy = [
./heresy.nix
./s3ql-upgrades.nix
];
garage = [
./garage.nix
./garage-options.nix
./garage-layout.nix
];
garageConfig = [
./garage-gateway.nix
./garage-metrics.nix
{
services.garage = {
inherit (config.garage) buckets keys;
};
}
];
garageInternal = [ ./garage-internal.nix ];
garageExternal = [ ./garage-external.nix ];
};
};
links = {
garageS3 = {
hostname = "garage.${depot.lib.meta.domain}";
port = 443;
protocol = "https";
url = with config.links.garageS3; lib.mkForce "${protocol}://${hostname}";
};
garageWeb = {
hostname = "web.garage.${depot.lib.meta.domain}";
port = 443;
protocol = "https";
url = with config.links.garageWeb; lib.mkForce "${protocol}://${hostname}";
};
};
hostLinks = lib.genAttrs config.services.storage.nodes.garage (name: {
garageRpc = {
ipv4 = meshIpForNode name;
};
garageS3 = {
protocol = "http";
ipv4 = meshIpForNode name;
};
garageWeb = {
protocol = "http";
ipv4 = meshIpForNode name;
};
});
monitoring.blackbox.targets.garage = {
address = "https://garage.${depot.lib.meta.domain}/health";
module = "https2xx";
};
garage = {
keys.storage-prophet = {};
buckets.storage-prophet = {
allow.storage-prophet = [ "read" "write" ];
};
};
dns.records.garage.consulService = "garage";
dns.records."^[^_].+\\.web\\.garage" = {
consulService = "garage-web";
rewrite.type = "regex";
};
}
Reference in a new issue View git blame Copy permalink