blob: 0eeac784b8bf24833d9a9b13eeb562ea12b5251a (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
|
{ pkgs, lib, config, ... }:
{
services.ntfy-sh = {
enable = lib.mkDefault config.monorepo.profiles.server.enable;
settings = {
base-url = "https://ntfy.${config.monorepo.vars.remoteHost}";
listen-http = "127.0.0.1:2586";
envrionmentFile = "/run/secrets/ntfy";
auth-file = "/var/lib/ntfy-sh/user.db";
auth-default-access = "deny-all";
enable-login = true;
};
};
systemd.services.ntfy-sh = {
serviceConfig = {
EnvironmentFile = "/run/secrets/ntfy";
};
postStart = lib.mkForce ''
# 1. Wait for the server to initialize the database
echo "Waiting for ntfy auth database to appear..."
TIMEOUT=30
while [ ! -f /var/lib/ntfy-sh/user.db ]; do
sleep 1
TIMEOUT=$((TIMEOUT-1))
if [ $TIMEOUT -le 0 ]; then
echo "Timed out waiting for database creation!"
exit 1
fi
done
echo "Database found. Configuring admin user..."
# 2. Define the username
ADMIN_USER="ret2pop"
# 3. Check if user exists, create if missing
# We pipe the password twice because 'ntfy user add' asks for confirmation
if ! ${pkgs.ntfy-sh}/bin/ntfy user list | grep -q "$ADMIN_USER"; then
echo "Creating admin user $ADMIN_USER..."
printf "$ADMIN_PASSWORD\n$ADMIN_PASSWORD" | \
${pkgs.ntfy-sh}/bin/ntfy user add --role=admin "$ADMIN_USER"
echo "User created."
else
echo "Admin user already exists."
fi
'';
};
}
|
