summary refs log tree commit diff stats
path: root/system/impermanence
diff options
context:
space:
mode:
authorSoispha <soispha@vhack.eu>2023-07-07 07:57:19 +0200
committerSoispha <soispha@vhack.eu>2023-07-07 08:03:14 +0200
commit2a6b02238dac392b3792111ae421fcbf058335be (patch)
treeaeee45bef43221966ec105b62bbae5a8412e7107 /system/impermanence
parentChore(.gitattributes): Remove removed acme path (diff)
downloadnixos-server-2a6b02238dac392b3792111ae421fcbf058335be.tar.gz
nixos-server-2a6b02238dac392b3792111ae421fcbf058335be.zip
Refactor(system/impermanence): Move to own directory
Diffstat (limited to 'system/impermanence')
-rw-r--r--system/impermanence/default.nix26
1 files changed, 26 insertions, 0 deletions
diff --git a/system/impermanence/default.nix b/system/impermanence/default.nix
new file mode 100644
index 0000000..32ad9f7
--- /dev/null
+++ b/system/impermanence/default.nix
@@ -0,0 +1,26 @@
+{...}: {
+  environment.persistence."/srv" = {
+    hideMounts = true;
+    directories = [
+      "/etc/nixos"
+      "/var/log"
+      "/var/lib/postgresql"
+      "/var/lib/acme"
+      {
+        directory = "/var/lib/nix-sync";
+        user = "nix-sync";
+        group = "nix-sync";
+        mode = "0700";
+      }
+      {
+        directory = "/var/lib/sshd";
+        user = "root";
+        group = "root";
+        mode = "0755";
+      }
+    ];
+    files = [
+      "/etc/machine-id"
+    ];
+  };
+}