puzzlevision/modules/nixos/services/bluesky/pds/default.nix

{
  lib,
  namespace,
  config,
  host,
  ...
}: with lib; with lib.${namespace};
let
  cfg = config.${namespace}.services.bluesky.pds;
in {
  options.${namespace}.services.bluesky.pds = {
    enable = mkEnableOption "Enable the Bluesky PDS, your own ATproto home!";
  };

  config = mkIf cfg.enable {
    sops.secrets.bluesky-pds = {
      sopsFile = lib.snowfall.fs.get-file "secrets/bluesky-pds.service.env";
      format = "dotenv";
    };

    systemd.tmpfiles.rules = [
      "d /var/lib/containers/bluesky 0700 root root -"
      "d /var/lib/containers/bluesky/pds 0700 root root -"
      "d /var/lib/containers/bluesky/pds/data 0700 root root -"
      "d /var/lib/containers/bluesky/pds/blobs 0700 root root -"
    ];

    virtualisation.oci-containers.containers.bluesky-pds = {
      image = "ghcr.io/bluesky-social/pds:0.4";
      autoStart = true;
      hostname = host;
      environmentFiles = [
        config.sops.secrets.bluesky-pds.path
      ];
      labels = {
        "traefik.enable" = "true";
        "traefik.http.routers.bluesky-pds.entrypoints" = "websecure";
        "traefik.http.routers.bluesky-pds.rule" = "Host(`*.bsky.thevoid.cafe`)";
        "traefik.http.services.bluesky-pds.loadbalancer.server.port" = "2583";
      };
      volumes = [
        "/var/lib/containers/bluesky/pds:/pds"
      ];
      extraOptions = ["--network=proxy"];
    };
  };
}
feat(service): add Bluesky PDS 2024-10-26 17:12:02 +02:00			`{`
			`lib,`
			`namespace,`
			`config,`
			`host,`
			`...`
			`}: with lib; with lib.${namespace};`
			`let`
			`cfg = config.${namespace}.services.bluesky.pds;`
			`in {`
			`options.${namespace}.services.bluesky.pds = {`
			`enable = mkEnableOption "Enable the Bluesky PDS, your own ATproto home!";`
			`};`

			`config = mkIf cfg.enable {`
			`sops.secrets.bluesky-pds = {`
			`sopsFile = lib.snowfall.fs.get-file "secrets/bluesky-pds.service.env";`
			`format = "dotenv";`
			`};`

			`systemd.tmpfiles.rules = [`
refactor(service): restructure bluesky PDS service configuration 2024-10-27 21:42:54 +01:00			`"d /var/lib/containers/bluesky 0700 root root -"`
			`"d /var/lib/containers/bluesky/pds 0700 root root -"`
			`"d /var/lib/containers/bluesky/pds/data 0700 root root -"`
			`"d /var/lib/containers/bluesky/pds/blobs 0700 root root -"`
feat(service): add Bluesky PDS 2024-10-26 17:12:02 +02:00			`];`

			`virtualisation.oci-containers.containers.bluesky-pds = {`
			`image = "ghcr.io/bluesky-social/pds:0.4";`
			`autoStart = true;`
			`hostname = host;`
			`environmentFiles = [`
			`config.sops.secrets.bluesky-pds.path`
			`];`
			`labels = {`
			`"traefik.enable" = "true";`
			`"traefik.http.routers.bluesky-pds.entrypoints" = "websecure";`
refactor(service): restructure bluesky PDS service configuration 2024-10-27 21:42:54 +01:00			"traefik.http.routers.bluesky-pds.rule" = "Host(`*.bsky.thevoid.cafe`)";
feat(service): add Bluesky PDS 2024-10-26 17:12:02 +02:00			`"traefik.http.services.bluesky-pds.loadbalancer.server.port" = "2583";`
			`};`
			`volumes = [`
refactor(service): restructure bluesky PDS service configuration 2024-10-27 21:42:54 +01:00			`"/var/lib/containers/bluesky/pds:/pds"`
feat(service): add Bluesky PDS 2024-10-26 17:12:02 +02:00			`];`
			`extraOptions = ["--network=proxy"];`
			`};`
			`};`
			`}`