eeva/home-manager
1
0
Fork 0
mirror of https://github.com/nix-community/home-manager synced 2024-11-23 11:39:46 +01:00
Code Issues Releases Wiki Activity
home-manager/modules/services/syncthing.nix

741 lines
26 KiB
Nix
Raw Normal View History

Add syncthing service
2017-07-17 10:10:15 +02:00
{ config, lib, pkgs, ... }:
with lib;
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
let
cfg = config.services.syncthing;
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
settingsFormat = pkgs.formats.json { };
cleanedConfig =
converge (filterAttrsRecursive (_: v: v != null && v != { })) cfg.settings;
isUnixGui = (builtins.substring 0 1 cfg.guiAddress) == "/";
# Syncthing supports serving the GUI over Unix sockets. If that happens, the
# API is served over the Unix socket as well. This function returns the correct
# curl arguments for the address portion of the curl command for both network
# and Unix socket addresses.
curlAddressArgs = path:
if isUnixGui
# if cfg.guiAddress is a unix socket, tell curl explicitly about it
# note that the dot in front of `${path}` is the hostname, which is
# required.
then
"--unix-socket ${cfg.guiAddress} http://.${path}"
# no adjustements are needed if cfg.guiAddress is a network address
else
"${cfg.guiAddress}${path}";
devices = mapAttrsToList (_: device: device // { deviceID = device.id; })
cfg.settings.devices;
folders = mapAttrsToList (_: folder:
folder // {
devices = map (device:
if builtins.isString device then {
deviceId = cfg.settings.devices.${device}.id;
} else
device) folder.devices;
}) (filterAttrs (_: folder: folder.enable) cfg.settings.folders);
jq = "${pkgs.jq}/bin/jq";
sleep = "${pkgs.coreutils}/bin/sleep";
printf = "${pkgs.coreutils}/bin/printf";
cat = "${pkgs.coreutils}/bin/cat";
curl = "${pkgs.curl}/bin/curl";
install = "${pkgs.coreutils}/bin/install";
syncthing = "${pkgs.syncthing}/bin/syncthing";
updateConfig = pkgs.writers.writeBash "merge-syncthing-config" (''
set -efu
# be careful not to leak secrets in the filesystem or in process listings
umask 0077
curl() {
# get the api key by parsing the config.xml
while
! ${pkgs.libxml2}/bin/xmllint \
--xpath 'string(configuration/gui/apikey)' \
''${XDG_STATE_HOME:-$HOME/.local/state}/syncthing/config.xml \
>"$RUNTIME_DIRECTORY/api_key"
do ${sleep} 1; done
(${printf} "X-API-Key: "; ${cat} "$RUNTIME_DIRECTORY/api_key") >"$RUNTIME_DIRECTORY/headers"
${curl} -sSLk -H "@$RUNTIME_DIRECTORY/headers" \
--retry 1000 --retry-delay 1 --retry-all-errors \
"$@"
}
'' +
/* Syncthing's rest API for the folders and devices is almost identical.
Hence we iterate them using lib.pipe and generate shell commands for both at
the same time.
*/
(lib.pipe {
# The attributes below are the only ones that are different for devices /
# folders.
devs = {
new_conf_IDs = map (v: v.id) devices;
GET_IdAttrName = "deviceID";
override = cfg.overrideDevices;
conf = devices;
baseAddress = curlAddressArgs "/rest/config/devices";
};
dirs = {
new_conf_IDs = map (v: v.id) folders;
GET_IdAttrName = "id";
override = cfg.overrideFolders;
conf = folders;
baseAddress = curlAddressArgs "/rest/config/folders";
};
} [
# Now for each of these attributes, write the curl commands that are
# identical to both folders and devices.
(mapAttrs (conf_type: s:
# We iterate the `conf` list now, and run a curl -X POST command for each, that
# should update that device/folder only.
lib.pipe s.conf [
# Quoting https://docs.syncthing.net/rest/config.html:
#
# > PUT takes an array and POST a single object. In both cases if a
# given folder/device already exists, its replaced, otherwise a new
# one is added.
#
# What's not documented, is that using PUT will remove objects that
# don't exist in the array given. That's why we use here `POST`, and
# only if s.override == true then we DELETE the relevant folders
# afterwards.
(map (new_cfg: ''
curl -d ${
lib.escapeShellArg (builtins.toJSON new_cfg)
} -X POST ${s.baseAddress}
''))
(lib.concatStringsSep "\n")
]
/* If we need to override devices/folders, we iterate all currently configured
IDs, via another `curl -X GET`, and we delete all IDs that are not part of
the Nix configured list of IDs
*/
+ lib.optionalString s.override ''
stale_${conf_type}_ids="$(curl -X GET ${s.baseAddress} | ${jq} \
--argjson new_ids ${
lib.escapeShellArg (builtins.toJSON s.new_conf_IDs)
} \
--raw-output \
'[.[].${s.GET_IdAttrName}] - $new_ids | .[]'
)"
for id in ''${stale_${conf_type}_ids}; do
curl -X DELETE ${s.baseAddress}/$id
done
''))
builtins.attrValues
(lib.concatStringsSep "\n")
]) +
/* Now we update the other settings defined in cleanedConfig which are not
"folders" or "devices".
*/
(lib.pipe cleanedConfig [
builtins.attrNames
(lib.subtractLists [ "folders" "devices" ])
(map (subOption: ''
curl -X PUT -d ${
lib.escapeShellArg (builtins.toJSON cleanedConfig.${subOption})
} ${curlAddressArgs "/rest/config/${subOption}"}
''))
(lib.concatStringsSep "\n")
]) + lib.optionalString (cfg.passwordFile != null) ''
syncthing_password=$(${cat} ${cfg.passwordFile})
curl -X PATCH -d '{"password": "'$syncthing_password'"}' ${
curlAddressArgs "/rest/config/gui"
}
'' + ''
# restart Syncthing if required
if curl ${curlAddressArgs "/rest/config/restart-required"} |
${jq} -e .requiresRestart > /dev/null; then
curl -X POST ${curlAddressArgs "/rest/system/restart"}
fi
'');
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
syncthing: add Darwin support
2023-02-08 17:59:38 +01:00
defaultSyncthingArgs = [
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
"${syncthing}"
syncthing: add Darwin support
2023-02-08 17:59:38 +01:00
"-no-browser"
"-no-restart"
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
"-no-upgrade"
"-gui-address=${if isUnixGui then "unix://" else ""}${cfg.guiAddress}"
syncthing: add Darwin support
2023-02-08 17:59:38 +01:00
"-logflags=0"
];
syncthingArgs = defaultSyncthingArgs ++ cfg.extraOptions;
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
in {
Mark rycee as maintainer for a bunch of modules
2017-09-26 23:40:31 +02:00
meta.maintainers = [ maintainers.rycee ];
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
options = with types; {
Add syncthing service
2017-07-17 10:10:15 +02:00
services.syncthing = {
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
enable = mkEnableOption ''
Syncthing, a self-hosted open-source alternative to Dropbox and Bittorrent Sync.
Further declarative configuration options only supported on Linux devices.
'';
cert = mkOption {
type = nullOr str;
default = null;
description = ''
Path to the `cert.pem` file, which will be copied into Syncthing's
config directory.
'';
};
key = mkOption {
type = nullOr str;
default = null;
description = ''
Path to the `key.pem` file, which will be copied into Syncthing's
config directory.
'';
};
passwordFile = mkOption {
type = nullOr path;
default = null;
description = ''
Path to the gui password file.
'';
};
overrideDevices = mkOption {
type = bool;
default = true;
description = ''
Whether to delete the devices which are not configured via the
[devices](#opt-services.syncthing.settings.devices) option.
If set to `false`, devices added via the web
interface will persist and will have to be deleted manually.
'';
};
overrideFolders = mkOption {
type = bool;
default = true;
description = ''
Whether to delete the folders which are not configured via the
[folders](#opt-services.syncthing.settings.folders) option.
If set to `false`, folders added via the web
interface will persist and will have to be deleted manually.
'';
};
settings = mkOption {
type = submodule {
freeformType = settingsFormat.type;
options = {
# global options
options = mkOption {
default = { };
description = ''
The options element contains all other global configuration options
'';
type = submodule ({ name, ... }: {
freeformType = settingsFormat.type;
options = {
localAnnounceEnabled = mkOption {
type = nullOr bool;
default = null;
description = ''
Whether to send announcements to the local LAN, also use such announcements to find other devices.
'';
};
localAnnouncePort = mkOption {
type = nullOr int;
default = null;
description = ''
The port on which to listen and send IPv4 broadcast announcements to.
'';
};
relaysEnabled = mkOption {
type = nullOr bool;
default = null;
description = ''
When true, relays will be connected to and potentially used for device to device connections.
'';
};
urAccepted = mkOption {
type = nullOr int;
default = null;
description = ''
Whether the user has accepted to submit anonymous usage data.
The default, 0, mean the user has not made a choice, and Syncthing will ask at some point in the future.
"-1" means no, a number above zero means that that version of usage reporting has been accepted.
'';
};
limitBandwidthInLan = mkOption {
type = nullOr bool;
default = null;
description = ''
Whether to apply bandwidth limits to devices in the same broadcast domain as the local device.
'';
};
maxFolderConcurrency = mkOption {
type = nullOr int;
default = null;
description = ''
This option controls how many folders may concurrently be in I/O-intensive operations such as syncing or scanning.
The mechanism is described in detail in a [separate chapter](https://docs.syncthing.net/advanced/option-max-concurrency.html).
'';
};
};
});
};
# device settings
devices = mkOption {
default = { };
description = ''
Peers/devices which Syncthing should communicate with.
Note that you can still add devices manually, but those changes
will be reverted on restart if [overrideDevices](#opt-services.syncthing.overrideDevices)
is enabled.
'';
example = {
bigbox = {
id =
"7CFNTQM-IMTJBHJ-3UWRDIU-ZGQJFR6-VCXZ3NB-XUH3KZO-N52ITXR-LAIYUAU";
addresses = [ "tcp://192.168.0.10:51820" ];
};
};
type = attrsOf (submodule ({ name, ... }: {
freeformType = settingsFormat.type;
options = {
name = mkOption {
type = str;
default = name;
description = ''
The name of the device.
'';
};
id = mkOption {
type = str;
description = ''
The device ID. See <https://docs.syncthing.net/dev/device-ids.html>.
'';
};
autoAcceptFolders = mkOption {
type = bool;
default = false;
description = ''
Automatically create or share folders that this device advertises at the default path.
See <https://docs.syncthing.net/users/config.html?highlight=autoaccept#config-file-format>.
'';
};
};
}));
};
# folder settings
folders = mkOption {
default = { };
description = ''
Folders which should be shared by Syncthing.
Note that you can still add folders manually, but those changes
will be reverted on restart if [overrideFolders](#opt-services.syncthing.overrideFolders)
is enabled.
'';
example = literalExpression ''
{
"/home/user/sync" = {
id = "syncme";
devices = [ "bigbox" ];
};
}
'';
type = attrsOf (submodule ({ name, ... }: {
freeformType = settingsFormat.type;
options = {
enable = mkOption {
type = bool;
default = true;
description = ''
Whether to share this folder.
This option is useful when you want to define all folders
in one place, but not every machine should share all folders.
'';
};
path = mkOption {
type = str // {
check = x:
str.check x
&& (substring 0 1 x == "/" || substring 0 2 x == "~/");
description = str.description + " starting with / or ~/";
};
default = name;
description = ''
The path to the folder which should be shared.
Only absolute paths (starting with `/`) and paths relative to
the user's home directory (starting with `~/`) are allowed.
'';
};
id = mkOption {
type = str;
default = name;
description = ''
The ID of the folder. Must be the same on all devices.
'';
};
label = mkOption {
type = str;
default = name;
description = ''
The label of the folder.
'';
};
type = mkOption {
type = enum [
"sendreceive"
"sendonly"
"receiveonly"
"receiveencrypted"
];
default = "sendreceive";
description = ''
Controls how the folder is handled by Syncthing.
See <https://docs.syncthing.net/users/config.html#config-option-folder.type>.
'';
};
devices = mkOption {
type = listOf str;
default = [ ];
description = ''
The devices this folder should be shared with. Each device must
be defined in the [devices](#opt-services.syncthing.settings.devices) option.
'';
};
versioning = mkOption {
default = null;
description = ''
How to keep changed/deleted files with Syncthing.
There are 4 different types of versioning with different parameters.
See <https://docs.syncthing.net/users/versioning.html>.
'';
example = literalExpression ''
[
{
versioning = {
type = "simple";
params.keep = "10";
};
}
{
versioning = {
type = "trashcan";
params.cleanoutDays = "1000";
};
}
{
versioning = {
type = "staggered";
fsPath = "/syncthing/backup";
params = {
cleanInterval = "3600";
maxAge = "31536000";
};
};
}
{
versioning = {
type = "external";
params.versionsPath = pkgs.writers.writeBash "backup" '''
folderpath="$1"
filepath="$2"
rm -rf "$folderpath/$filepath"
''';
};
}
]
'';
type = with types;
nullOr (submodule {
freeformType = settingsFormat.type;
options = {
type = mkOption {
type = enum [
"external"
"simple"
"staggered"
"trashcan"
];
description = ''
The type of versioning.
See <https://docs.syncthing.net/users/versioning.html>.
'';
};
};
});
};
copyOwnershipFromParent = mkOption {
type = bool;
default = false;
description = ''
On Unix systems, tries to copy file/folder ownership from
the parent directory (the directory its located in).
Requires running Syncthing as a privileged user, or
granting it additional capabilities (e.g. CAP_CHOWN on
Linux).
'';
};
};
}));
};
};
};
default = { };
description = ''
Extra configuration options for Syncthing.
See <https://docs.syncthing.net/users/config.html>.
Note that this attribute set does not exactly match the documented
XML format. Instead, this is the format of the JSON REST API. There
are slight differences. For example, this XML:
```xml
<options>
<listenAddress>default</listenAddress>
<minHomeDiskFree unit="%">1</minHomeDiskFree>
</options>
```
corresponds to the Nix code:
```nix
{
options = {
listenAddresses = [
"default"
];
minHomeDiskFree = {
unit = "%";
value = 1;
};
};
}
```
'';
example = {
options.localAnnounceEnabled = false;
gui.theme = "black";
};
};
guiAddress = mkOption {
type = str;
default = "127.0.0.1:8384";
description = ''
The address to serve the web interface at.
'';
};
allProxy = mkOption {
type = with types; nullOr str;
default = null;
example = "socks5://address.com:1234";
description = ''
Overwrites the {env}`all_proxy` environment variable for the Syncthing
process to the given value. This is normally used to let Syncthing
connect through a SOCKS5 proxy server. See
<https://docs.syncthing.net/users/proxying.html>.
'';
};
syncthing: merge qsyncthingtray into the module
2018-01-21 21:24:48 +01:00
syncthing: add option `extraOptions` Fixes #2598
2022-01-27 00:29:00 +01:00
extraOptions = mkOption {
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
type = listOf str;
syncthing: add option `extraOptions` Fixes #2598
2022-01-27 00:29:00 +01:00
default = [ ];
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
example = [ "--reset-deltas" ];
treewide: remove now-redundant `lib.mdDoc` calls These (and the `*MD` functions apart from `literalMD`) are now no-ops in nixpkgs and serve no purpose other than to add additional noise and potentially mislead people into thinking unmarked DocBook documentation will still be accepted. Note that if backporting changes including documentation to 23.05, the `mdDoc` calls will need to be re-added. To reproduce this commit, run: $ NIX_PATH=nixpkgs=flake:nixpkgs/e7e69199f0372364a6106a1e735f68604f4c5a25 \ nix shell nixpkgs#coreutils \ -c find . -name '*.nix' \ -exec nix run -- github:emilazy/nix-doc-munge/98dadf1f77351c2ba5dcb709a2a171d655f15099 \ --strip {} + $ ./format
2023-07-02 01:45:18 +02:00
description = ''
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
Extra command-line arguments to pass to {command}`syncthing`
syncthing: add option `extraOptions` Fixes #2598
2022-01-27 00:29:00 +01:00
'';
};
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
package = mkPackageOption pkgs "syncthing" { };
syncthing: merge qsyncthingtray into the module
2018-01-21 21:24:48 +01:00
tray = mkOption {
syncthing: make syncthing tray package configurable (#1257) Also sets the default syncthing tray package to https://github.com/Martchus/syncthingtray instead of https://github.com/sieren/QSyncthingTray, which indirectly fixes #603
2021-05-18 16:43:17 +02:00
type = with types;
either bool (submodule {
options = {
enable = mkOption {
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
type = bool;
syncthing: make syncthing tray package configurable (#1257) Also sets the default syncthing tray package to https://github.com/Martchus/syncthingtray instead of https://github.com/sieren/QSyncthingTray, which indirectly fixes #603
2021-05-18 16:43:17 +02:00
default = false;
treewide: remove now-redundant `lib.mdDoc` calls These (and the `*MD` functions apart from `literalMD`) are now no-ops in nixpkgs and serve no purpose other than to add additional noise and potentially mislead people into thinking unmarked DocBook documentation will still be accepted. Note that if backporting changes including documentation to 23.05, the `mdDoc` calls will need to be re-added. To reproduce this commit, run: $ NIX_PATH=nixpkgs=flake:nixpkgs/e7e69199f0372364a6106a1e735f68604f4c5a25 \ nix shell nixpkgs#coreutils \ -c find . -name '*.nix' \ -exec nix run -- github:emilazy/nix-doc-munge/98dadf1f77351c2ba5dcb709a2a171d655f15099 \ --strip {} + $ ./format
2023-07-02 01:45:18 +02:00
description = "Whether to enable a syncthing tray service.";
syncthing: make syncthing tray package configurable (#1257) Also sets the default syncthing tray package to https://github.com/Martchus/syncthingtray instead of https://github.com/sieren/QSyncthingTray, which indirectly fixes #603
2021-05-18 16:43:17 +02:00
};
command = mkOption {
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
type = str;
syncthing: make syncthing tray package configurable (#1257) Also sets the default syncthing tray package to https://github.com/Martchus/syncthingtray instead of https://github.com/sieren/QSyncthingTray, which indirectly fixes #603
2021-05-18 16:43:17 +02:00
default = "syncthingtray";
Replace usage of `literalExample` Instead use the new function `literalExpression`. See https://github.com/NixOS/nixpkgs/pull/136909
2021-10-09 11:14:08 +02:00
defaultText = literalExpression "syncthingtray";
example = literalExpression "qsyncthingtray";
treewide: remove now-redundant `lib.mdDoc` calls These (and the `*MD` functions apart from `literalMD`) are now no-ops in nixpkgs and serve no purpose other than to add additional noise and potentially mislead people into thinking unmarked DocBook documentation will still be accepted. Note that if backporting changes including documentation to 23.05, the `mdDoc` calls will need to be re-added. To reproduce this commit, run: $ NIX_PATH=nixpkgs=flake:nixpkgs/e7e69199f0372364a6106a1e735f68604f4c5a25 \ nix shell nixpkgs#coreutils \ -c find . -name '*.nix' \ -exec nix run -- github:emilazy/nix-doc-munge/98dadf1f77351c2ba5dcb709a2a171d655f15099 \ --strip {} + $ ./format
2023-07-02 01:45:18 +02:00
description = "Syncthing tray command to use.";
syncthing: make syncthing tray package configurable (#1257) Also sets the default syncthing tray package to https://github.com/Martchus/syncthingtray instead of https://github.com/sieren/QSyncthingTray, which indirectly fixes #603
2021-05-18 16:43:17 +02:00
};
package = mkOption {
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
type = package;
syncthing: make syncthing tray package configurable (#1257) Also sets the default syncthing tray package to https://github.com/Martchus/syncthingtray instead of https://github.com/sieren/QSyncthingTray, which indirectly fixes #603
2021-05-18 16:43:17 +02:00
default = pkgs.syncthingtray-minimal;
Replace usage of `literalExample` Instead use the new function `literalExpression`. See https://github.com/NixOS/nixpkgs/pull/136909
2021-10-09 11:14:08 +02:00
defaultText = literalExpression "pkgs.syncthingtray-minimal";
example = literalExpression "pkgs.qsyncthingtray";
treewide: remove now-redundant `lib.mdDoc` calls These (and the `*MD` functions apart from `literalMD`) are now no-ops in nixpkgs and serve no purpose other than to add additional noise and potentially mislead people into thinking unmarked DocBook documentation will still be accepted. Note that if backporting changes including documentation to 23.05, the `mdDoc` calls will need to be re-added. To reproduce this commit, run: $ NIX_PATH=nixpkgs=flake:nixpkgs/e7e69199f0372364a6106a1e735f68604f4c5a25 \ nix shell nixpkgs#coreutils \ -c find . -name '*.nix' \ -exec nix run -- github:emilazy/nix-doc-munge/98dadf1f77351c2ba5dcb709a2a171d655f15099 \ --strip {} + $ ./format
2023-07-02 01:45:18 +02:00
description = "Syncthing tray package to use.";
syncthing: make syncthing tray package configurable (#1257) Also sets the default syncthing tray package to https://github.com/Martchus/syncthingtray instead of https://github.com/sieren/QSyncthingTray, which indirectly fixes #603
2021-05-18 16:43:17 +02:00
};
};
});
default = { enable = false; };
treewide: remove now-redundant `lib.mdDoc` calls These (and the `*MD` functions apart from `literalMD`) are now no-ops in nixpkgs and serve no purpose other than to add additional noise and potentially mislead people into thinking unmarked DocBook documentation will still be accepted. Note that if backporting changes including documentation to 23.05, the `mdDoc` calls will need to be re-added. To reproduce this commit, run: $ NIX_PATH=nixpkgs=flake:nixpkgs/e7e69199f0372364a6106a1e735f68604f4c5a25 \ nix shell nixpkgs#coreutils \ -c find . -name '*.nix' \ -exec nix run -- github:emilazy/nix-doc-munge/98dadf1f77351c2ba5dcb709a2a171d655f15099 \ --strip {} + $ ./format
2023-07-02 01:45:18 +02:00
description = "Syncthing tray service configuration.";
syncthing: merge qsyncthingtray into the module
2018-01-21 21:24:48 +01:00
};
Add syncthing service
2017-07-17 10:10:15 +02:00
};
};
syncthing: allow enabling tray independently
2018-01-30 20:15:31 +01:00
config = mkMerge [
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
(mkIf cfg.enable {
syncthing: install man pages to user profile
2020-03-22 21:13:05 +01:00
home.packages = [ (getOutput "man" pkgs.syncthing) ];
syncthing: merge qsyncthingtray into the module
2018-01-21 21:24:48 +01:00
systemd.user.services = {
syncthing = {
Unit = {
Apply `nixfmt` on many files
2020-02-02 00:39:17 +01:00
Description =
"Syncthing - Open Source Continuous File Synchronization";
syncthing: merge qsyncthingtray into the module
2018-01-21 21:24:48 +01:00
Documentation = "man:syncthing(1)";
After = [ "network.target" ];
};
Add syncthing service
2017-07-17 10:10:15 +02:00
syncthing: merge qsyncthingtray into the module
2018-01-21 21:24:48 +01:00
Service = {
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
ExecStartPre = mkIf (cfg.cert != null || cfg.key != null) "+${
pkgs.writers.writeBash "syncthing-copy-keys" ''
syncthing_dir="''${XDG_STATE_HOME:-$HOME/.local/state}/syncthing"
${install} -dm700 "$syncthing_dir"
${optionalString (cfg.cert != null) ''
${install} -Dm400 ${
toString cfg.cert
} "$syncthing_dir/cert.pem"
''}
${optionalString (cfg.key != null) ''
${install} -Dm400 ${
toString cfg.key
} "$syncthing_dir/key.pem"
''}
''
}";
syncthing: add Darwin support
2023-02-08 17:59:38 +01:00
ExecStart = escapeShellArgs syncthingArgs;
syncthing: merge qsyncthingtray into the module
2018-01-21 21:24:48 +01:00
Restart = "on-failure";
SuccessExitStatus = [ 3 4 ];
RestartForceExitStatus = [ 3 4 ];
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
Environment =
mkIf (cfg.allProxy != null) { all_proxy = cfg.allProxy; };
syncthing: add more service sandboxing
2021-08-14 13:25:54 +02:00
# Sandboxing.
LockPersonality = true;
MemoryDenyWriteExecute = true;
syncthing: restrict service slightly
2021-07-19 22:41:51 +02:00
NoNewPrivileges = true;
PrivateUsers = true;
syncthing: add more service sandboxing
2021-08-14 13:25:54 +02:00
RestrictNamespaces = true;
SystemCallArchitectures = "native";
SystemCallFilter = "@system-service";
syncthing: merge qsyncthingtray into the module
2018-01-21 21:24:48 +01:00
};
Apply `nixfmt` on many files
2020-02-02 00:39:17 +01:00
Install = { WantedBy = [ "default.target" ]; };
syncthing: merge qsyncthingtray into the module
2018-01-21 21:24:48 +01:00
};
syncthing: expand declarative configuration This expands the Syncthing configuration to allow declarative settings. Code mostly pulled from the Nixpkgs module. Changes compared to the NixOS module are: Removed the following options: - user, group, systemService: Unnecessary since Syncthing always runs as the user declaring the configuration. - dataDir configDir, databaseDir: Pointed to ~/.local/state/syncthing, the default Syncthing directory. - openDefaultPorts: We don't have access to the system firewall. Furthermore, multiple changes to systemd services were made to maintain consistency with other Home Manager modules, sandboxing options might need to be reviewed further. Fixes #4049
2024-08-31 10:12:40 +02:00
syncthing-init = mkIf (cleanedConfig != { }) {
Unit = {
Description = "Syncthing configuration updater";
Requires = [ "syncthing.service" ];
After = [ "syncthing.service" ];
};
Service = {
Type = "oneshot";
ExecStart = updateConfig;
RuntimeDirectory = "syncthing-init";
RemainAfterExit = true;
};
Install = { WantedBy = [ "default.target" ]; };
};
syncthing: expand service description This models the user service on the upstream systemd file.
2017-07-18 13:49:02 +02:00
};
syncthing: add Darwin support
2023-02-08 17:59:38 +01:00
launchd.agents.syncthing = {
enable = true;
config = {
ProgramArguments = syncthingArgs;
KeepAlive = {
Crashed = true;
SuccessfulExit = false;
};
ProcessType = "Background";
};
};
syncthing: allow enabling tray independently
2018-01-30 20:15:31 +01:00
})
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
(mkIf (isAttrs cfg.tray && cfg.tray.enable) {
modules: add platform assertions
2022-04-24 16:25:54 +02:00
assertions = [
(hm.assertions.assertPlatform "services.syncthing.tray" pkgs
platforms.linux)
];
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
systemd.user.services = {
${cfg.tray.package.pname} = {
Unit = {
Description = cfg.tray.package.pname;
Requires = [ "tray.target" ];
After = [ "graphical-session-pre.target" "tray.target" ];
PartOf = [ "graphical-session.target" ];
};
syncthing: make syncthing tray package configurable (#1257) Also sets the default syncthing tray package to https://github.com/Martchus/syncthingtray instead of https://github.com/sieren/QSyncthingTray, which indirectly fixes #603
2021-05-18 16:43:17 +02:00
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
Service = {
ExecStart = "${cfg.tray.package}/bin/${cfg.tray.command}";
syncthing: merge qsyncthingtray into the module
2018-01-21 21:24:48 +01:00
};
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
Install = { WantedBy = [ "graphical-session.target" ]; };
syncthing: make syncthing tray package configurable (#1257) Also sets the default syncthing tray package to https://github.com/Martchus/syncthingtray instead of https://github.com/sieren/QSyncthingTray, which indirectly fixes #603
2021-05-18 16:43:17 +02:00
};
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
};
})
syncthing: make syncthing tray package configurable (#1257) Also sets the default syncthing tray package to https://github.com/Martchus/syncthingtray instead of https://github.com/sieren/QSyncthingTray, which indirectly fixes #603
2021-05-18 16:43:17 +02:00
# deprecated
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
(mkIf (isBool cfg.tray && cfg.tray) {
modules: add platform assertions
2022-04-24 16:25:54 +02:00
assertions = [
(hm.assertions.assertPlatform "services.syncthing.tray" pkgs
platforms.linux)
];
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
systemd.user.services = {
"syncthingtray" = {
Unit = {
Description = "syncthingtray";
Requires = [ "tray.target" ];
After = [ "graphical-session-pre.target" "tray.target" ];
PartOf = [ "graphical-session.target" ];
};
Add syncthing service
2017-07-17 10:10:15 +02:00
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
Service = {
ExecStart = "${pkgs.syncthingtray-minimal}/bin/syncthingtray";
syncthing: make syncthing tray package configurable (#1257) Also sets the default syncthing tray package to https://github.com/Martchus/syncthingtray instead of https://github.com/sieren/QSyncthingTray, which indirectly fixes #603
2021-05-18 16:43:17 +02:00
};
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
Install = { WantedBy = [ "graphical-session.target" ]; };
syncthing: merge qsyncthingtray into the module
2018-01-21 21:24:48 +01:00
};
syncthing: add `cfg` variable for convenience
2022-01-27 00:30:39 +01:00
};
warnings = [
"Specifying 'services.syncthing.tray' as a boolean is deprecated, set 'services.syncthing.tray.enable' instead. See https://github.com/nix-community/home-manager/pull/1257."
];
})
syncthing: allow enabling tray independently
2018-01-30 20:15:31 +01:00
];
Add syncthing service
2017-07-17 10:10:15 +02:00
}
Reference in a new issue Copy permalink