From d9747c64b038943253eaafdc59a49d5face46dab Mon Sep 17 00:00:00 2001
From: Fuwn <contact@fuwn.me>
Date: Fri, 20 Sep 2024 05:36:20 -0700
Subject: modules: server and core modules

---
 modules/server/systemd.nix | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 modules/server/systemd.nix

(limited to 'modules/server/systemd.nix')

diff --git a/modules/server/systemd.nix b/modules/server/systemd.nix
new file mode 100644
index 0000000..acdcef4
--- /dev/null
+++ b/modules/server/systemd.nix
@@ -0,0 +1,27 @@
+{ secrets, ... }:
+let
+  containerEngine = "podman";
+in
+{
+  systemd.services.tailscale-up = {
+    after = [ "tailscaled.service" ];
+    requires = [ "tailscaled.service" ];
+    wantedBy = [ "multi-user.target" ];
+
+    serviceConfig = {
+      ExecStart = "/run/current-system/sw/bin/tailscale up --authkey ${secrets.tailscale_authentication_key}";
+      Restart = "on-failure";
+    };
+  };
+
+  systemd.services.ghcr-login = {
+    after = [ "${containerEngine}.service" ];
+    requires = [ "${containerEngine}.service" ];
+    wantedBy = [ "multi-user.target" ];
+
+    serviceConfig = {
+      ExecStart = "/run/current-system/sw/bin/${containerEngine} login ghcr.io -u ${secrets.ghcr.username} -p ${secrets.ghcr.token}";
+      Restart = "on-failure";
+    };
+  };
+}
-- 
cgit v1.2.3