blake/nix
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: blake:dd896748ab5b194b5c59839d649680d35f8b6f19
Branches Tags
blake:trunk
...
compare: blake:fd5ef2c7e008c84e3e0cd70b1256594c4e99f05d
Branches Tags
blake:trunk

57 Commits
dd896748ab ... fd5ef2c7e0

Author SHA1 Message Date
blake
fd5ef2c7e0 240 current 2025-10-10 21:55:37 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:57:42 -05:00
blake
fe54d9896b 239 current 2025-10-10 21:53:16 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:55:39 -05:00
blake
4f4341165e 238 current 2025-10-10 21:51:26 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:53:21 -05:00
blake
a59b331bbe 237 current 2025-10-10 21:49:29 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:51:31 -05:00
blake
699c0d1f29 236 current 2025-10-10 21:46:09 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:49:34 -05:00
blake
6b70ab5f69 235 current 2025-10-10 21:42:12 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:46:14 -05:00
blake
15bf851f33 234 current 2025-10-10 21:36:10 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:42:18 -05:00
blake
6cf3e58600 234 current 2025-10-10 21:36:10 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:38:27 -05:00
blake
e564e632b3 233 current 2025-10-10 21:35:34 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:36:12 -05:00
blake
fec251a4c3 232 current 2025-10-10 21:34:31 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:35:43 -05:00
blake
aa29d58e9d 231 current 2025-10-10 21:32:35 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:34:33 -05:00
blake
e8fb6f383f 230 current 2025-10-10 21:30:12 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:32:37 -05:00
blake
3064a404e0 229 current 2025-10-10 21:25:49 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:30:15 -05:00
blake
65a8654165 228 current 2025-10-10 21:22:38 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:25:51 -05:00
blake
1876238748 227 current 2025-10-10 21:18:19 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:22:41 -05:00
blake
13cfe73b65 226 current 2025-10-10 21:05:33 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:18:21 -05:00
blake
56d7504a79 225 current 2025-10-10 21:01:34 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:05:35 -05:00
blake
23170eb4fc 224 current 2025-10-10 20:58:53 25.05.20251006.20c4598 6.12.50 * 2025-10-10 21:01:37 -05:00
blake
7eb729d29a 223 current 2025-10-10 20:52:33 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:58:55 -05:00
blake
015045c56f 223 current 2025-10-10 20:52:33 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:53:11 -05:00
blake
fa1d1310c9 222 current 2025-10-10 20:51:09 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:52:40 -05:00
blake
0d9679ae0a 221 current 2025-10-10 20:48:25 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:51:14 -05:00
blake
11b7545928 220 current 2025-10-10 20:46:18 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:48:28 -05:00
blake
afbef1bf7d 219 current 2025-10-10 20:44:06 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:46:20 -05:00
blake
0fe813201a 218 current 2025-10-10 20:40:59 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:44:08 -05:00
blake
0bcf16b127 217 current 2025-10-10 20:18:09 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:41:01 -05:00
blake
3a7f4de155 216 current 2025-10-10 04:43:06 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:18:11 -05:00
blake
10f2b436f0 216 current 2025-10-10 04:43:06 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:11:16 -05:00
blake
4bc8f56956 216 current 2025-10-10 04:43:06 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:10:21 -05:00
blake
08a3d16a83 216 current 2025-10-10 04:43:06 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:08:42 -05:00
blake
a8dddf8cbb 216 current 2025-10-10 04:43:06 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:08:13 -05:00
blake
16d62f5ed2 216 current 2025-10-10 04:43:06 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:06:54 -05:00
blake
f754badc78 216 current 2025-10-10 04:43:06 25.05.20251006.20c4598 6.12.50 * 2025-10-10 20:05:43 -05:00
blake
ac642a20b1 216 current 2025-10-10 04:43:06 25.05.20251006.20c4598 6.12.50 * 2025-10-10 04:59:12 -05:00
blake
f9ed9ab55f 215 current 2025-10-10 04:30:17 25.05.20251006.20c4598 6.12.50 * 2025-10-10 04:43:08 -05:00
blake
9fb05656cc 214 current 2025-10-10 04:13:05 25.05.20251006.20c4598 6.12.50 * 2025-10-10 04:30:20 -05:00
blake
910b2125ae 214 current 2025-10-10 04:13:05 25.05.20251006.20c4598 6.12.50 * 2025-10-10 04:29:35 -05:00
blake
743858c6d1 214 current 2025-10-10 04:13:05 25.05.20251006.20c4598 6.12.50 * 2025-10-10 04:21:23 -05:00
blake
f9764fb3a6 213 current 2025-10-10 04:10:50 25.05.20251006.20c4598 6.12.50 * 2025-10-10 04:13:07 -05:00
blake
73d57f7441 213 current 2025-10-10 04:10:50 25.05.20251006.20c4598 6.12.50 * 2025-10-10 04:11:25 -05:00
blake
f28c9ea93d 212 current 2025-10-10 03:46:48 25.05.20251006.20c4598 6.12.50 * 2025-10-10 04:10:56 -05:00
blake
85e6635bb7 212 current 2025-10-10 03:46:48 25.05.20251006.20c4598 6.12.50 * 2025-10-10 04:00:23 -05:00
blake
8ce6cf9f89 212 current 2025-10-10 03:46:48 25.05.20251006.20c4598 6.12.50 * 2025-10-10 03:47:38 -05:00
blake
208a21efd5 211 current 2025-10-10 03:14:57 25.05.20251006.20c4598 6.12.50 * 2025-10-10 03:46:50 -05:00
blake
d0065f8053 210 current 2025-10-10 02:55:45 25.05.20251006.20c4598 6.12.50 * 2025-10-10 03:15:01 -05:00
blake
877e70cd48 210 current 2025-10-10 02:55:45 25.05.20251006.20c4598 6.12.50 * 2025-10-10 02:56:37 -05:00
blake
576c83eabd 209 current 2025-10-10 02:45:03 25.05.20251006.20c4598 6.12.50 * 2025-10-10 02:55:47 -05:00
blake
2df106c25f 209 current 2025-10-10 02:45:03 25.05.20251006.20c4598 6.12.50 * 2025-10-10 02:48:44 -05:00
blake
52d12ceb26 208 current 2025-10-10 02:29:51 25.05.20251006.20c4598 6.12.50 * 2025-10-10 02:45:06 -05:00
blake
c080e647cc 207 current 2025-10-10 02:23:15 25.05.20251006.20c4598 6.12.50 * 2025-10-10 02:29:54 -05:00
blake
4ddb17b6d3 206 current 2025-10-10 02:17:13 25.05.20251006.20c4598 6.12.50 * 2025-10-10 02:23:17 -05:00
blake
96e173ee29 205 current 2025-10-10 02:16:29 25.05.20251006.20c4598 6.12.50 * 2025-10-10 02:17:15 -05:00
blake
13fb00dd10 204 current 2025-10-10 00:57:52 25.05.20251006.20c4598 6.12.50 * 2025-10-10 02:16:32 -05:00
blake
d607de1418 204 current 2025-10-10 00:57:52 25.05.20251006.20c4598 6.12.50 * 2025-10-10 02:14:50 -05:00
blake
8181a339ae 204 current 2025-10-10 00:57:52 25.05.20251006.20c4598 6.12.50 * 2025-10-10 02:11:11 -05:00
blake
adc334eab5 204 current 2025-10-10 00:57:52 25.05.20251006.20c4598 6.12.50 * 2025-10-10 02:08:55 -05:00
blake
9f03fa499d 204 current 2025-10-10 00:57:52 25.05.20251006.20c4598 6.12.50 * 2025-10-10 02:07:12 -05:00
5 changed files with 54 additions and 21 deletions
Expand all files Collapse all files

2
flake.nix
View File

@@ -1,6 +1,6 @@
# flake for blakes nixos config
# define new devices in outputs
# generation: 203 current 2025-10-10 00:56:13 25.05.20251006.20c4598 6.12.50 *
# generation: 240 current 2025-10-10 21:55:37 25.05.20251006.20c4598 6.12.50 *
{
description = "blakes nix config";
inputs = {

5
hosts/snowbelle/configuration.nix
View File

@@ -9,8 +9,9 @@ in
[ # Include the results of the hardware scan.
./hardware-configuration.nix
../../users/users.nix
../../modules/system/default.nix
../../modules/homelab/default.nix
../../modules/system
../../modules/homelab
../../modules/homelab/gameservers/minecraft_recpro
];
modules = {

61
modules/homelab/gameservers/minecraft_recpro/default.nix
View File

@@ -5,10 +5,10 @@ let
cfg = config.modules.gameservers.${service};
sec = config.sops.secrets;
servers = {
velocity = { data_dir = "/var/lib/gameserver/minecraft_recpro/velocity"; ram = "2G"; };
smp = { data_dir = "/var/lib/gameserver/minecraft_recpro/smp"; ram = "12G"; };
superflat = { data_dir = "/var/lib/gameserver/minecraft_recpro/superflat"; ram = "4G"; };
bento = { data_dir = "/var/lib/gameserver/minecraft_recpro"; ram = "2G"; };
velocity = { data_dir = "/var/lib/gameservers/minecraft_recpro/velocity"; ram = "2G"; };
smp = { data_dir = "/var/lib/gameservers/minecraft_recpro/smp"; ram = "12G"; };
superflat = { data_dir = "/var/lib/gameservers/minecraft_recpro/superflat"; ram = "4G"; };
bento = { data_dir = "/var/lib/gameservers/minecraft_recpro/bento"; ram = "2G"; };
};
in
{
@@ -46,12 +46,14 @@ in
description = "minecraft server user";
uid = lib.mkForce cfg.ids;
isSystemUser = true;
shell = pkgs.bash;
group = "minecraft";
extraGroups = [];
};
systemd.tmpfiles.rules = lib.concatStringsSep "\n" (mapAttrsToList (name: cfg:
"d ${cfg.data_dir} 0755 minecraft minecraft -") servers);
systemd.tmpfiles.rules = lib.attrsets.mapAttrsToList (name: cfg:
"d ${cfg.data_dir} 0770 minecraft minecraft -"
) servers;
# Create a systemd service per server running in tmux
systemd.services = lib.attrsets.mapAttrs (name: srv: {
@@ -61,15 +63,35 @@ in
serviceConfig = {
User = "minecraft";
WorkingDirectory = srv.data_dir;
ExecStart = "${pkgs.tmux}/bin/tmux new-session -d -s ${name} '${pkgs.openjdk21}/bin/java -Xmx${srv.ram} -jar ${srv.data_dir}/server.jar nogui'";
ExecStop = "${pkgs.tmux}/bin/tmux send-keys -t ${name} C-c"; # stop server by sending Ctrl+C to tmux session
UMask = "0007";
ExecStart = "${pkgs.openjdk21}/bin/java -Xmx${srv.ram} -jar ${srv.data_dir}/server.jar nogui";
# ExecStart = "${pkgs.tmux}/bin/tmux new-session -d -s mcrp-${name} '${pkgs.openjdk21}/bin/java -Xmx${srv.ram} -jar ${srv.data_dir}/server.jar nogui'";
# ExecStop = "${pkgs.tmux}/bin/tmux send-keys -t mcrp-${name} C-c"; # stop server by sending Ctrl+C to tmux session
Restart = "on-failure";
KillMode = "process";
};
wantedBy = [ "multi-user.target" ];
UMask = "0007";
}) servers;
environment.systemPackages = with pkgs; [ openjdk21 mcrcon ];
services.mysql = {
enable = true;
package = pkgs.mariadb;
ensureDatabases = [ "minecraft_recpro_db" ];
ensureUsers = [
{
name = "minecraft";
ensurePermissions = { "minecraft_recpro_db.*" = "ALL PRIVILEGES"; };
}
];
initialScript = pkgs.writeText "minecraft_recpro-init.sql" ''
CREATE USER IF NOT EXISTS 'minecraft_recpro'@'localhost' IDENTIFIED BY 'IKNOWTHISISBADIJUSTNEEDTHISTOWORKRNPLS';
GRANT ALL PRIVILEGES ON minecraft_recpro_db.* TO 'minecraft_recpro'@'localhost';
FLUSH PRIVILEGES;
'';
};
# open firewall
networking.firewall.allowedTCPPorts = [ 25777 25565 25566 25567 ];
@@ -92,12 +114,21 @@ in
# };
# };
#
# sops.secrets = {
# "${service}_" = {
# owner = "${service}";
# group = "${service}";
# };
# };
sops.secrets = {
"velocity_forwarding" = {
owner = "minecraft";
group = "minecraft";
path = "/var/lib/gameservers/minecraft_recpro/velocity/forwarding.secret";
mode = "0400";
};
"minecraft_recpro_db_passwd" = {
owner = "mysql";
group = "mysql";
};
};
# add to backups
modules.system.backups.paths = lib.mkIf cfg.backup [ cfg.data_dir ];

5
secrets/secrets.yaml
View File

@@ -24,6 +24,7 @@ gitea_database_password: ENC[AES256_GCM,data:nhFn0/G7gW5rk996OZzlcTt7T9KMbP8MNM+
mosquitto_password_file: ENC[AES256_GCM,data:7ifs2hGnFQSgJOAKpN0usfiaqLjj7Rjb7zn1/qBDbqEi5hV0JfUncZGorBivR/+kjXHQO6nxaHcKqYvPedNdJ7Qy4/uil/xwgwSmzcbisdVYkhd2pf/N34EQFxmqohud0aTH9V47QbgTdrUPfvsiL+ljLvLu4w==,iv:z7YPIfJHHaLOJrDVnMQhgcMzYAPordFR11kHRAzZqYU=,tag:LRddczdvy01YTm2DFDgSJQ==,type:str]
#ENC[AES256_GCM,data:HJ81OxRD2xtNZKv+8oDqiT8mYpv45JMvjxU5pdmEKzl64SK3lQ==,iv:wStoC6XaZlvRPfbqti2CUbPrOOTt4KktaUp2ecVrggU=,tag:isOwKfNdQZAM+E8YQXBSFA==,type:comment]
velocity_forwarding: ENC[AES256_GCM,data:MUNhW3q0/klK51k3,iv:dGT5N+IrZfBxMIwa0mUrIKF2HJvx/uZ5o/ps6bgDNOE=,tag:KNY2LKwmmnCdWqRnxSKctw==,type:str]
minecraft_recpro_db_passwd: ENC[AES256_GCM,data:dPAkdEX0hBigo/lND2r3ShxnS4Jc5wTI2ShcKnvjig==,iv:WjPugYspUvhy6TAh5UF3etvxTZjAPe3bkgFxIkh6FDw=,tag:h9LGoxp2x8PHxcP8fEkSlA==,type:str]
sops:
age:
- recipient: age14gfh682a7m7jfp3qrulql03x5rs7yedwmxwksxrrmgjsunstyuksqx93pz
@@ -35,7 +36,7 @@ sops:
U0tmdFBuZnJES3piOTZNV0VKQmQ0eVUKCWRQ/flLzmpC64WyLoipklZBmrkpYiUg
PRu+itNolpPTHm96pe+P93g2iP0wgekG0cX21wkiU2xaLF3dY2FEIA==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2025-10-10T06:58:16Z"
mac: ENC[AES256_GCM,data:esDQXPJSwUpChIVfcXJe5MVFI3ZJD2APDbOcfw5amo/PYB1QbbNS3W63heEmyVK8CW/UXSeeepfzlnk0kyneDX+v1ANP6B5+LLlpuEbjb4vKxZvo7C1xb5dGqzG7aizXjs83k/vZTwXw9/4AgQUQq9gL9ZI1Bmgk3yNvzctLU4U=,iv:IMO35FHjrhFoLu1TE1f/3PJOVGhe8Hwcr0CzsoJMHiM=,tag:L1ibIfAfYE9K+lKiTxsofQ==,type:str]
lastmodified: "2025-10-10T08:43:27Z"
mac: ENC[AES256_GCM,data:3mH0+EY8MFLe78x38CFyWY7CzgkRftAAy25y6lWcqeY8U6XT9CCenaL6vsbZO5j1ypXMtYMlJOO2VFgM5SmbdEKY1rzZldNOoyeMpfV/hHRI6Gm1dD9IyXFFISb12MhO3kt/stWRs84ufGkKe/BpjcurnFlbCAy064cQd9Knu1Y=,iv:KZOlNj/WkbhwgY/OvuY+emTtYftaFZWi+CFIZwFfXiw=,tag:adndDqlpqiVx6VYqKLVETQ==,type:str]
unencrypted_suffix: _unencrypted
version: 3.11.0

2
users/blake/blake.nix
View File

@@ -20,7 +20,7 @@ in
# create blake user
users.users.${cfg.username} = {
isNormalUser = true;
extraGroups = [ "wheel" "networkmanager" "docker" "media" ]; # Enable sudo for the user.
extraGroups = [ "wheel" "networkmanager" "docker" "media" "minecraft" ]; # Enable sudo for the user.
uid = 1000;
shell = pkgs.zsh;
group = "blake";