yanlin/nix
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
nix/modules/syncthing.nix
Yan Lin c18309aead add syncthing to vps
2025-12-03 13:45:30 +01:00

153 lines
4.3 KiB
Nix
Raw Blame History

{ config, pkgs, lib, ... }:
let
cfg = config.syncthing-custom;
# Common ignore patterns for all synced folders
commonIgnores = [
".DS_Store"
"*.tmp"
"*.temp"
"~*"
".*.swp"
".*.swo"
"*~"
".Trash"
".Trash-*"
"Thumbs.db"
"desktop.ini"
];
# Convert ignore list to .stignore file content
stignoreContent = lib.concatStringsSep "\n" commonIgnores;
# Device groupings
pcDevices = [ "macbook" "hs" "thinkpad" ];
touchDevices = [ "iphone" "ipad" ];
cloudDevices = [ "vps" ];
allDevices = pcDevices ++ touchDevices ++ cloudDevices;
# Common versioning configuration
commonVersioning = {
type = "staggered";
params = {
maxAge = "15552000"; # 180 days in seconds
cleanInterval = "3600"; # Clean every hour
};
};
in
{
options.syncthing-custom = {
enabledFolders = lib.mkOption {
type = lib.types.listOf lib.types.str;
default = [ "Credentials" "Documents" "Archive" ];
description = "List of Syncthing folders to enable for this host.";
};
enableGui = lib.mkOption {
type = lib.types.bool;
default = true;
description = "Whether to enable the Syncthing web GUI.";
};
};
config = {
# Enable Syncthing service
services.syncthing = {
enable = true;
# Don't enable tray on server (Linux) or macOS
tray.enable = false;
# Listen on all interfaces for the GUI
guiAddress = lib.mkIf cfg.enableGui "0.0.0.0:8384";
# Declarative configuration - will override any GUI changes
overrideDevices = true;
overrideFolders = true;
settings = {
# Define all devices
devices = {
"iphone" = {
id = "NMWI5MP-J4FC4A6-SDDXZPD-G66TJCO-2W7KGFD-RJWQ53U-I7GUVWP-WHF4QQO";
};
"hs" = {
id = "GH5D3DJ-PAGKBL6-3VDZJRT-QG4ZMRD-GHCCA3Y-HM2H5CE-NAMJYRR-VHLOOQH";
};
"thinkpad" = {
id = "OMZKASU-QPZDCQ2-7QRHRD4-3TPAXLM-AYRMWXB-A6E5OIZ-MGR422V-JYARQA6";
};
"ipad" = {
id = "ZN3W6K7-VTRRRMT-Y35PSVU-EARJ6FP-6JBFIOF-YAFUAUZ-2TSFW3T-5YGDZAO";
};
"macbook" = {
id = "XPAMYJX-D7UZKPI-JBLTAWG-EBPSFYV-NEFV42V-NIUZKQN-KTVTGGP-OOXL5AT";
};
};
# Define shared folders (only enabled ones)
folders =
(lib.optionalAttrs (lib.elem "Credentials" cfg.enabledFolders) {
"Credentials" = {
path = "~/Credentials";
devices = allDevices;
ignorePerms = true;
versioning = commonVersioning;
};
})
// (lib.optionalAttrs (lib.elem "Documents" cfg.enabledFolders) {
"Documents" = {
path = "~/Documents";
devices = pcDevices;
ignorePerms = true;
versioning = commonVersioning;
};
})
// (lib.optionalAttrs (lib.elem "Archive" cfg.enabledFolders) {
"Archive" = {
path = "~/Archive";
devices = pcDevices ++ touchDevices;
ignorePerms = true;
versioning = commonVersioning;
};
});
# GUI settings with authentication
gui = {
enabled = cfg.enableGui;
user = "yanlin";
useTLS = false;
};
# Additional settings
options = {
urAccepted = -1; # Disable usage reporting
relaysEnabled = true;
localAnnounceEnabled = true;
globalAnnounceEnabled = true;
};
};
};
# Override the launchd agent to add RunAtLoad on macOS
launchd.agents.syncthing = lib.mkIf (pkgs.stdenv.isDarwin && config.services.syncthing.enable) {
config.RunAtLoad = true;
};
# Deploy .stignore files to synced folders (only for enabled folders)
home.file = lib.mkMerge [
(lib.mkIf (lib.elem "Credentials" cfg.enabledFolders) {
"Credentials/.stignore".text = stignoreContent;
})
(lib.mkIf (lib.elem "Documents" cfg.enabledFolders) {
"Documents/.stignore".text = stignoreContent;
})
(lib.mkIf (lib.elem "Archive" cfg.enabledFolders) {
"Archive/.stignore".text = stignoreContent;
})
];
# For NixOS systems, we need to add Syncthing as a manual service in Traefik
# Since Syncthing runs as a systemd service (not container), we'll handle routing via static config
# or create a container wrapper for it to use with service discovery
};
}
Reference in a new issue View git blame Copy permalink