commit a400206df0f49a4d879f6b242f7aff3e8bf30cb8 · pyrox.dev/nixpkgs

pyrox.dev / nixpkgs

lol

fork atom

meme-bingo-web: 1.1.0 → 1.2.0 (#373278)

authored by Donovan Glover and committed by GitHub 11 months ago a400206d c6bcac5e

+21 -2

2 changed files

expand all

unified split

nixos

modules

services

web-apps

meme-bingo-web.nix

pkgs

by-name

meme-bingo-web

package.nix

+19

nixos/modules/services/web-apps/meme-bingo-web.nix

··· 36 36 default = "http://localhost:41678/"; 37 37 example = "https://bingo.example.com/"; 38 38 }; 39 + address = mkOption { 40 + description = '' 41 + The address the webserver will bind to. 42 + ''; 43 + type = types.str; 44 + default = "localhost"; 45 + example = "::"; 46 + }; 39 47 port = mkOption { 40 48 description = '' 41 49 Port to be used for the web server. ··· 44 52 default = 41678; 45 53 example = 21035; 46 54 }; 55 + openFirewall = mkEnableOption '' 56 + Opens the specified port in the firewall. 57 + ''; 47 58 }; 48 59 }; 49 60 50 61 config = mkIf cfg.enable { 62 + networking.firewall.allowedTCPPorts = mkIf cfg.openFirewall [ cfg.port ]; 63 + 51 64 systemd.services.meme-bingo-web = { 52 65 description = "A web app for playing meme bingos"; 53 66 wantedBy = [ "multi-user.target" ]; 54 67 55 68 environment = { 56 69 MEME_BINGO_BASE = cfg.baseUrl; 70 + MEME_BINGO_ADDRESS = cfg.address; 57 71 MEME_BINGO_PORT = toString cfg.port; 58 72 }; 59 73 path = [ cfg.package ]; ··· 75 89 InaccessiblePaths = [ 76 90 "/dev/shm" 77 91 "/sys" 92 + "/run/dbus" 93 + "/run/user" 94 + "/run/nscd" 78 95 ]; 79 96 LockPersonality = true; 80 97 PrivateDevices = true; ··· 110 127 RemoveIPC = true; 111 128 NoNewPrivileges = true; 112 129 MemoryDenyWriteExecute = true; 130 + ExecPaths = [ "/nix/store" ]; 131 + NoExecPaths = [ "/" ]; 113 132 }; 114 133 }; 115 134 };

+2 -2

pkgs/by-name/me/meme-bingo-web/package.nix

··· 8 8 9 9 rustPlatform.buildRustPackage rec { 10 10 pname = "meme-bingo-web"; 11 - version = "1.1.0"; 11 + version = "1.2.0"; 12 12 13 13 src = fetchFromGitea { 14 14 domain = "codeberg.org"; 15 15 owner = "annaaurora"; 16 16 repo = "meme-bingo-web"; 17 17 rev = "v${version}"; 18 - hash = "sha256-AKY0EjeoOnliRN3XSnlCgzCvnWOkZPQz/9QIcr8+hQM="; 18 + hash = "sha256-0ahyyuihpwmAmaBwZv7lNmjuy8UsAm1a9XUhWcYq76w="; 19 19 }; 20 20 21 21 useFetchCargoVendor = true;