feat(topology): extract more service info and add helper functions to define stuff

2025-10-10 23:00:39 +02:00 · 2024-04-01 02:26:52 +02:00 · 2024-04-01 02:26:52 +02:00 · 30579a433e
commit 30579a433e
parent cc35dd599a
12 changed files with 174 additions and 175 deletions
--- a/hosts/sire/default.nix
+++ b/hosts/sire/default.nix
@ -20,6 +20,9 @@
    ./net.nix
  ];

+  topology.self.hardware.info = "AMD Ryzen Threadripper 1950X, 96GB RAM";
+  topology.self.interfaces.lan.sharesNetworkWith = x: x == "lan-self";
+
  boot.mode = "efi";
  boot.initrd.availableKernelModules = ["xhci_pci" "ahci" "nvme" "usbhid" "usb_storage" "e1000e" "alx"];

@ -81,6 +84,13 @@
          networking.nftables.firewall = {
            zones.untrusted.interfaces = [config.guests.${guestName}.networking.mainLinkName];
          };
+          topology.self.interfaces.lan.physicalConnections = [
+            {
+              node = config.node.name;
+              interface = "lan-self";
+              renderer.reverse = true;
+            }
+          ];
        }
      ];
    };
--- a/hosts/sire/guests/loki.nix
+++ b/hosts/sire/guests/loki.nix
@ -64,6 +64,7 @@ in {
    }
  ];

+  topology.self.services.loki.info = "https://" + lokiDomain;
  services.loki = let
    lokiDir = "/var/lib/loki";
  in {
--- a/hosts/ward/default.nix
+++ b/hosts/ward/default.nix
@ -23,26 +23,7 @@

  topology.self.hardware.image = ../../odroid-h3.png;
  topology.self.hardware.info = "ODROID H3, 64GB RAM";
-  # TODO FIXME topology bogus
-  topology.self.interfaces.lan-self.physicalConnections = [
-    {
-      node = config.node.name;
-      interface = "lan";
-    }
-  ];
-  topology.self.interfaces.lan.physicalConnections =
-    lib.flip map [
-      "adguardhome"
-      "forgejo"
-      "kanidm"
-      "radicale"
-      "vaultwarden"
-    ] (
-      x: {
-        node = "ward-${x}";
-        interface = "lan";
-      }
-    );
+  topology.self.interfaces.lan.sharesNetworkWith = x: x == "lan-self";

  boot.mode = "efi";
  boot.initrd.availableKernelModules = ["xhci_pci" "ahci" "nvme" "usbhid" "usb_storage" "sd_mod" "sdhci_pci" "r8169"];
@ -87,6 +68,13 @@
          networking.nftables.firewall = {
            zones.untrusted.interfaces = [config.guests.${guestName}.networking.mainLinkName];
          };
+          topology.self.interfaces.lan.physicalConnections = [
+            {
+              node = config.node.name;
+              interface = "lan-self";
+              renderer.reverse = true;
+            }
+          ];
        }
      ];
    };
--- a/hosts/ward/guests/adguardhome.nix
+++ b/hosts/ward/guests/adguardhome.nix
@ -48,6 +48,7 @@ in {
    allowedUDPPorts = [53];
  };

+  topology.self.services.adguardhome.info = "https://" + adguardhomeDomain;
  services.adguardhome = {
    enable = true;
    # TODO allow mutable settings, replace 123.123.123.123 with
--- a/hosts/ward/guests/radicale.nix
+++ b/hosts/ward/guests/radicale.nix
@ -43,6 +43,7 @@ in {
    }
  ];

+  topology.self.services.radicale.info = "https://" + radicaleDomain;
  services.radicale = {
    enable = true;
    settings = {