alejandro-angulo/dotfiles
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

Initial setup of home assistant

Browse source
This commit is contained in:
Alejandro Angulo 2023-11-19 08:27:18 -08:00
parent 7951d3b222
commit 64cd40c9fb
Signed by: alejandro-angulo
GPG key ID: 75579581C74554B6
2 changed files with 82 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

78
modules/nixos/services/homeassistant/default.nix Normal file
View file

@ -0,0 +1,78 @@
{
options,
config,
lib,
pkgs,
format,
...
}:
with lib; let
cfg = config.aa.services.homeassistant;
hass_cfg = config.services.home-assistant;
in {
options.aa.services.homeassistant = with types; {
enable = mkEnableOption "home assistant";
acmeCertName = mkOption {
type = str;
default = "";
description = ''
If set to a non-empty string, forces SSL with the supplied acme
certificate.
'';
};
};
config = mkIf cfg.enable {
services.home-assistant = {
enable = true;
extraPackages = python3packages:
with python3packages; [
# postgresql support
psycopg2
# video support
ha-ffmpeg
# tuya needed for default config
tuya-iot-py-sdk
];
config = {
default_config = {};
http = {
use_x_forwarded_for = true;
trusted_proxies = ["127.0.0.1"];
};
recorder.db_url = "postgresql://@/hass";
};
};
services.nginx = {
enable = true;
virtualHosts."hass.kilonull.com" =
{
locations."/" = {
recommendedProxySettings = true;
proxyWebsockets = true;
proxyPass = "http://127.0.0.1:${toString hass_cfg.config.http.server_port}";
};
}
// lib.optionalAttrs (cfg.acmeCertName != "") {
forceSSL = true;
useACMEHost = cfg.acmeCertName;
};
};
services.postgresql = {
ensureDatabases = ["hass"];
ensureUsers = [
{
name = "hass";
ensurePermissions = {
"DATABASE hass" = "ALL PRIVILEGES";
};
}
];
};
};
}

4
systems/x86_64-linux/node/default.nix
View file

@ -47,6 +47,10 @@
remoteTargetDatasets = ["tank/backups"]; remoteTargetDatasets = ["tank/backups"];
remoteTargetPublicKeys = ["ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAhA+9O2OBMDH1Xnj6isu36df5TOdZG8aEA4JpN2K60e syncoid@gospel"]; remoteTargetPublicKeys = ["ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAhA+9O2OBMDH1Xnj6isu36df5TOdZG8aEA4JpN2K60e syncoid@gospel"];
}; };
services.homeassistant = {
enable = true;
acmeCertName = "kilonull.com";
};
security.acme = { security.acme = {
enable = true; enable = true;