feat(services): WIP setup base for Vaultwarden service

2025-01-18 18:03:06 +01:00 · 2024-09-20 23:08:38 +02:00 · 2024-09-20 23:08:38 +02:00 · 16dae5bcd5
commit 16dae5bcd5
parent 54e26baeaf
1 changed files with 20 additions and 2 deletions
--- a/modules/home/services/vaultwarden/default.nix
+++ b/modules/home/services/vaultwarden/default.nix
@ -1,5 +1,23 @@
 {
+  namespace,
+  hostname,
+  config,
  ...
-}: {
-  # Todo: implement example service structure which should be re-usable for any future services.
+}: with lib; with lib.${namespace};
+let
+  cfg = config.${namespace}.services.vaultwarden;
+in {
+  options.${namespace}.services.vaultwarden = { enable = mkEnableOption "Enable the Vaultwarden service."; };
+
+  config = mkIf cfg.enable {
+    virtualisation.oci-containers.containers.vaultwarden = {
+      image = "vaultwarden/server";
+      autoStart = true;
+      hostname = hostname;
+      # Todo: continue writing vaultwarden config
+    };
+
+    # Todo: figure out "traefik" as a service and how to configure it per-service
+    # Todo: setup age-nix or sops-nix for secret management
+  };
 }