From a1d4df15182a160adeb411623c8bd29d60c7b7cf Mon Sep 17 00:00:00 2001 From: sefidel Date: Mon, 4 Dec 2023 19:32:56 +0900 Subject: feat(modules/obsidian-livesync): init --- modules/services/obsidian-livesync.nix | 63 ++++++++++++++++++++++++++++++++++ 1 file changed, 63 insertions(+) create mode 100644 modules/services/obsidian-livesync.nix diff --git a/modules/services/obsidian-livesync.nix b/modules/services/obsidian-livesync.nix new file mode 100644 index 0000000..3377069 --- /dev/null +++ b/modules/services/obsidian-livesync.nix @@ -0,0 +1,63 @@ + { config, lib, ... }: + + with lib; + let + cfg = config.modules.services.obsidian-livesync; + + port = 5984; + in + { + options.modules.services.obsidian-livesync = { + enable = mkEnableOption "obsidian-livesync server"; + + domain = mkOption { type = types.str; }; + realHost = mkOption { type = types.str; default = "obsidian-livesync.${cfg.domain}"; }; + }; + + config = mkIf cfg.enable { + services.couchdb = { + enable = true; + configFile = "/var/lib/couchdb/config"; + + extraConfig = '' + [couchdb] + single_node=true + max_document_size = 50000000 + + [admins] + admin = please-change-me + + [chttpd] + require_valid_user = true + max_http_request_size = 4294967296 + enable_cors = true + + [chttpd_auth] + require_valid_user = true + authentication_redirect = /_utils/session.html + + [httpd] + WWW-Authenticate = Basic realm="couchdb" + bind_address = 127.0.0.1 + port = ${toString port} + + [cors] + origins = app://obsidian.md, capacitor://localhost, http://localhost + credentials = true + headers = accept, authorization, content-type, origin, referer + methods = GET,PUT,POST,HEAD,DELETE + max_age = 3600 + ''; + }; + + environment.persistence."/persist".directories = [ + "/var/lib/couchdb" + ]; + + services.nginx.virtualHosts.${cfg.realHost} = { + useACMEHost = cfg.domain; + forceSSL = true; + locations."/".proxyPass = "http://localhost:${toString port}"; + }; + }; +} -- cgit 1.4.1