2018-01-23 09:51:13 +00:00
|
|
|
|
{ config, lib, pkgs, ... }:
|
|
|
|
|
|
|
|
|
|
with lib;
|
|
|
|
|
|
|
|
|
|
let
|
|
|
|
|
cfg = config.services.home-assistant;
|
2022-01-30 01:41:15 +00:00
|
|
|
|
format = pkgs.formats.yaml {};
|
2018-01-23 09:51:13 +00:00
|
|
|
|
|
2024-10-31 23:46:59 +00:00
|
|
|
|
# Post-process YAML output to add support for YAML functions, like
|
|
|
|
|
# secrets or includes, by naively unquoting strings with leading bangs
|
|
|
|
|
# and at least one space-separated parameter.
|
2022-01-30 01:41:15 +00:00
|
|
|
|
# https://www.home-assistant.io/docs/configuration/secrets/
|
2024-10-31 23:46:59 +00:00
|
|
|
|
renderYAMLFile = fn: yaml: pkgs.runCommandLocal fn { } ''
|
|
|
|
|
cp ${format.generate fn yaml} $out
|
2020-06-01 23:48:35 +00:00
|
|
|
|
sed -i -e "s/'\!\([a-z_]\+\) \(.*\)'/\!\1 \2/;s/^\!\!/\!/;" $out
|
2019-01-24 15:49:06 +00:00
|
|
|
|
'';
|
2024-10-31 23:46:59 +00:00
|
|
|
|
|
|
|
|
|
# Filter null values from the configuration, so that we can still advertise
|
|
|
|
|
# optional options in the config attribute.
|
|
|
|
|
filteredConfig = lib.converge (lib.filterAttrsRecursive (_: v: ! elem v [ null ])) (lib.recursiveUpdate customLovelaceModulesResources (cfg.config or {}));
|
|
|
|
|
configFile = renderYAMLFile "configuration.yaml" filteredConfig;
|
|
|
|
|
|
|
|
|
|
lovelaceConfigFile = renderYAMLFile "ui-lovelace.yaml" cfg.lovelaceConfig;
|
2019-01-24 14:52:05 +00:00
|
|
|
|
|
2022-01-30 01:41:15 +00:00
|
|
|
|
# Components advertised by the home-assistant package
|
2019-02-22 16:28:59 +00:00
|
|
|
|
availableComponents = cfg.package.availableComponents;
|
2018-02-01 12:42:07 +00:00
|
|
|
|
|
2022-01-30 01:41:15 +00:00
|
|
|
|
# Components that were added by overriding the package
|
2021-12-01 00:09:52 +00:00
|
|
|
|
explicitComponents = cfg.package.extraComponents;
|
2022-01-30 01:41:15 +00:00
|
|
|
|
useExplicitComponent = component: elem component explicitComponents;
|
2019-04-25 13:54:24 +00:00
|
|
|
|
|
|
|
|
|
# Given a component "platform", looks up whether it is used in the config
|
|
|
|
|
# as `platform = "platform";`.
|
2018-02-04 00:30:47 +00:00
|
|
|
|
#
|
2019-04-25 13:54:24 +00:00
|
|
|
|
# For example, the component mqtt.sensor is used as follows:
|
2018-02-04 00:30:47 +00:00
|
|
|
|
# config.sensor = [ {
|
2019-04-25 13:54:24 +00:00
|
|
|
|
# platform = "mqtt";
|
2018-02-04 00:30:47 +00:00
|
|
|
|
# ...
|
|
|
|
|
# } ];
|
2022-01-30 01:41:15 +00:00
|
|
|
|
usedPlatforms = config:
|
2023-04-05 23:26:24 +00:00
|
|
|
|
# don't recurse into derivations possibly creating an infinite recursion
|
|
|
|
|
if isDerivation config then
|
|
|
|
|
[ ]
|
|
|
|
|
else if isAttrs config then
|
2022-01-30 01:41:15 +00:00
|
|
|
|
optional (config ? platform) config.platform
|
|
|
|
|
++ concatMap usedPlatforms (attrValues config)
|
|
|
|
|
else if isList config then
|
|
|
|
|
concatMap usedPlatforms config
|
|
|
|
|
else [ ];
|
2018-02-04 00:30:47 +00:00
|
|
|
|
|
2022-01-30 01:41:15 +00:00
|
|
|
|
useComponentPlatform = component: elem component (usedPlatforms cfg.config);
|
2021-12-01 00:09:52 +00:00
|
|
|
|
|
2022-01-30 01:41:15 +00:00
|
|
|
|
# Returns whether component is used in config, explicitly passed into package or
|
|
|
|
|
# configured in the module.
|
2018-02-04 00:30:47 +00:00
|
|
|
|
useComponent = component:
|
|
|
|
|
hasAttrByPath (splitString "." component) cfg.config
|
2021-12-01 00:09:52 +00:00
|
|
|
|
|| useComponentPlatform component
|
2022-01-30 01:35:34 +00:00
|
|
|
|
|| useExplicitComponent component
|
2024-02-11 03:09:52 +00:00
|
|
|
|
|| builtins.elem component (cfg.extraComponents ++ cfg.defaultIntegrations);
|
2018-02-01 12:42:07 +00:00
|
|
|
|
|
2022-01-30 01:41:15 +00:00
|
|
|
|
# Final list of components passed into the package to include required dependencies
|
2018-02-01 12:42:07 +00:00
|
|
|
|
extraComponents = filter useComponent availableComponents;
|
|
|
|
|
|
2022-01-30 01:35:34 +00:00
|
|
|
|
package = (cfg.package.override (oldArgs: {
|
|
|
|
|
# Respect overrides that already exist in the passed package and
|
|
|
|
|
# concat it with values passed via the module.
|
2022-02-16 23:45:38 +00:00
|
|
|
|
extraComponents = oldArgs.extraComponents or [] ++ extraComponents;
|
2022-02-01 02:10:31 +00:00
|
|
|
|
extraPackages = ps: (oldArgs.extraPackages or (_: []) ps)
|
|
|
|
|
++ (cfg.extraPackages ps)
|
|
|
|
|
++ (lib.concatMap (component: component.propagatedBuildInputs or []) cfg.customComponents);
|
2022-01-30 01:35:34 +00:00
|
|
|
|
}));
|
2022-01-30 23:17:10 +00:00
|
|
|
|
|
|
|
|
|
# Create a directory that holds all lovelace modules
|
|
|
|
|
customLovelaceModulesDir = pkgs.buildEnv {
|
|
|
|
|
name = "home-assistant-custom-lovelace-modules";
|
|
|
|
|
paths = cfg.customLovelaceModules;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
# Create parts of the lovelace config that reference lovelave modules as resources
|
|
|
|
|
customLovelaceModulesResources = {
|
|
|
|
|
lovelace.resources = map (card: {
|
2023-12-10 11:12:55 +00:00
|
|
|
|
url = "/local/nixos-lovelace-modules/${card.entrypoint or (card.pname + ".js")}?${card.version}";
|
2022-01-30 23:17:10 +00:00
|
|
|
|
type = "module";
|
|
|
|
|
}) cfg.customLovelaceModules;
|
|
|
|
|
};
|
2018-01-23 09:51:13 +00:00
|
|
|
|
in {
|
2022-01-30 01:41:15 +00:00
|
|
|
|
imports = [
|
|
|
|
|
# Migrations in NixOS 22.05
|
|
|
|
|
(mkRemovedOptionModule [ "services" "home-assistant" "applyDefaultConfig" ] "The default config was migrated into services.home-assistant.config")
|
|
|
|
|
(mkRemovedOptionModule [ "services" "home-assistant" "autoExtraComponents" ] "Components are now parsed from services.home-assistant.config unconditionally")
|
|
|
|
|
(mkRenamedOptionModule [ "services" "home-assistant" "port" ] [ "services" "home-assistant" "config" "http" "server_port" ])
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
meta = {
|
|
|
|
|
buildDocsInSandbox = false;
|
|
|
|
|
maintainers = teams.home-assistant.members;
|
|
|
|
|
};
|
2018-01-23 09:51:13 +00:00
|
|
|
|
|
|
|
|
|
options.services.home-assistant = {
|
2021-06-14 22:23:49 +00:00
|
|
|
|
# Running home-assistant on NixOS is considered an installation method that is unsupported by the upstream project.
|
|
|
|
|
# https://github.com/home-assistant/architecture/blob/master/adr/0012-define-supported-installation-method.md#decision
|
|
|
|
|
enable = mkEnableOption "Home Assistant. Please note that this installation method is unsupported upstream";
|
2018-01-23 09:51:13 +00:00
|
|
|
|
|
|
|
|
|
configDir = mkOption {
|
|
|
|
|
default = "/var/lib/hass";
|
|
|
|
|
type = types.path;
|
|
|
|
|
description = "The config directory, where your {file}`configuration.yaml` is located.";
|
|
|
|
|
};
|
|
|
|
|
|
2024-02-11 03:09:52 +00:00
|
|
|
|
defaultIntegrations = mkOption {
|
|
|
|
|
type = types.listOf (types.enum availableComponents);
|
|
|
|
|
# https://github.com/home-assistant/core/blob/dev/homeassistant/bootstrap.py#L109
|
|
|
|
|
default = [
|
|
|
|
|
"application_credentials"
|
|
|
|
|
"frontend"
|
|
|
|
|
"hardware"
|
|
|
|
|
"logger"
|
|
|
|
|
"network"
|
|
|
|
|
"system_health"
|
|
|
|
|
|
|
|
|
|
# key features
|
|
|
|
|
"automation"
|
|
|
|
|
"person"
|
|
|
|
|
"scene"
|
|
|
|
|
"script"
|
|
|
|
|
"tag"
|
|
|
|
|
"zone"
|
|
|
|
|
|
|
|
|
|
# built-in helpers
|
|
|
|
|
"counter"
|
|
|
|
|
"input_boolean"
|
|
|
|
|
"input_button"
|
|
|
|
|
"input_datetime"
|
|
|
|
|
"input_number"
|
|
|
|
|
"input_select"
|
|
|
|
|
"input_text"
|
|
|
|
|
"schedule"
|
|
|
|
|
"timer"
|
|
|
|
|
|
|
|
|
|
# non-supervisor
|
|
|
|
|
"backup"
|
|
|
|
|
];
|
|
|
|
|
readOnly = true;
|
|
|
|
|
description = ''
|
|
|
|
|
List of integrations set are always set up, unless in recovery mode.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
2022-01-30 01:35:34 +00:00
|
|
|
|
extraComponents = mkOption {
|
|
|
|
|
type = types.listOf (types.enum availableComponents);
|
|
|
|
|
default = [
|
|
|
|
|
# List of components required to complete the onboarding
|
|
|
|
|
"default_config"
|
|
|
|
|
"met"
|
|
|
|
|
"esphome"
|
2022-07-30 16:18:27 +00:00
|
|
|
|
] ++ optionals pkgs.stdenv.hostPlatform.isAarch [
|
2022-01-30 17:07:25 +00:00
|
|
|
|
# Use the platform as an indicator that we might be running on a RaspberryPi and include
|
|
|
|
|
# relevant components
|
|
|
|
|
"rpi_power"
|
2022-01-30 01:35:34 +00:00
|
|
|
|
];
|
|
|
|
|
example = literalExpression ''
|
|
|
|
|
[
|
|
|
|
|
"analytics"
|
|
|
|
|
"default_config"
|
|
|
|
|
"esphome"
|
|
|
|
|
"my"
|
|
|
|
|
"shopping_list"
|
|
|
|
|
"wled"
|
|
|
|
|
]
|
|
|
|
|
'';
|
|
|
|
|
description = ''
|
|
|
|
|
List of [components](https://www.home-assistant.io/integrations/) that have their dependencies included in the package.
|
|
|
|
|
|
|
|
|
|
The component name can be found in the URL, for example `https://www.home-assistant.io/integrations/ffmpeg/` would map to `ffmpeg`.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
2022-01-30 02:46:41 +00:00
|
|
|
|
extraPackages = mkOption {
|
|
|
|
|
type = types.functionTo (types.listOf types.package);
|
|
|
|
|
default = _: [];
|
|
|
|
|
defaultText = literalExpression ''
|
|
|
|
|
python3Packages: with python3Packages; [];
|
|
|
|
|
'';
|
|
|
|
|
example = literalExpression ''
|
|
|
|
|
python3Packages: with python3Packages; [
|
|
|
|
|
# postgresql support
|
|
|
|
|
psycopg2
|
|
|
|
|
];
|
|
|
|
|
'';
|
|
|
|
|
description = ''
|
|
|
|
|
List of packages to add to propagatedBuildInputs.
|
|
|
|
|
|
2022-08-13 03:15:06 +00:00
|
|
|
|
A popular example is `python3Packages.psycopg2`
|
2022-01-30 02:46:41 +00:00
|
|
|
|
for PostgreSQL support in the recorder component.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
2022-02-01 02:10:31 +00:00
|
|
|
|
customComponents = mkOption {
|
2024-07-26 11:13:58 +00:00
|
|
|
|
type = types.listOf (
|
|
|
|
|
types.addCheck types.package (p: p.isHomeAssistantComponent or false) // {
|
|
|
|
|
name = "home-assistant-component";
|
|
|
|
|
description = "package that is a Home Assistant component";
|
|
|
|
|
}
|
|
|
|
|
);
|
2022-02-01 02:10:31 +00:00
|
|
|
|
default = [];
|
|
|
|
|
example = literalExpression ''
|
|
|
|
|
with pkgs.home-assistant-custom-components; [
|
2023-12-07 18:16:44 +00:00
|
|
|
|
prometheus_sensor
|
2022-02-01 02:10:31 +00:00
|
|
|
|
];
|
|
|
|
|
'';
|
|
|
|
|
description = ''
|
|
|
|
|
List of custom component packages to install.
|
|
|
|
|
|
|
|
|
|
Available components can be found below `pkgs.home-assistant-custom-components`.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
2022-01-30 23:17:10 +00:00
|
|
|
|
customLovelaceModules = mkOption {
|
|
|
|
|
type = types.listOf types.package;
|
|
|
|
|
default = [];
|
|
|
|
|
example = literalExpression ''
|
|
|
|
|
with pkgs.home-assistant-custom-lovelace-modules; [
|
|
|
|
|
mini-graph-card
|
|
|
|
|
mini-media-player
|
|
|
|
|
];
|
|
|
|
|
'';
|
|
|
|
|
description = ''
|
|
|
|
|
List of custom lovelace card packages to load as lovelace resources.
|
|
|
|
|
|
|
|
|
|
Available cards can be found below `pkgs.home-assistant-custom-lovelace-modules`.
|
|
|
|
|
|
|
|
|
|
::: {.note}
|
|
|
|
|
Automatic loading only works with lovelace in `yaml` mode.
|
|
|
|
|
:::
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
2022-01-30 01:41:15 +00:00
|
|
|
|
config = mkOption {
|
2022-02-22 11:04:04 +00:00
|
|
|
|
type = types.nullOr (types.submodule {
|
2022-01-30 01:41:15 +00:00
|
|
|
|
freeformType = format.type;
|
|
|
|
|
options = {
|
|
|
|
|
# This is a partial selection of the most common options, so new users can quickly
|
|
|
|
|
# pick up how to match home-assistants config structure to ours. It also lets us preset
|
|
|
|
|
# config values intelligently.
|
2018-04-21 14:32:09 +00:00
|
|
|
|
|
2022-01-30 01:41:15 +00:00
|
|
|
|
homeassistant = {
|
|
|
|
|
# https://www.home-assistant.io/docs/configuration/basic/
|
|
|
|
|
name = mkOption {
|
|
|
|
|
type = types.nullOr types.str;
|
|
|
|
|
default = null;
|
|
|
|
|
example = "Home";
|
|
|
|
|
description = ''
|
|
|
|
|
Name of the location where Home Assistant is running.
|
|
|
|
|
'';
|
|
|
|
|
};
|
2018-04-21 14:32:09 +00:00
|
|
|
|
|
2022-01-30 01:41:15 +00:00
|
|
|
|
latitude = mkOption {
|
|
|
|
|
type = types.nullOr (types.either types.float types.str);
|
|
|
|
|
default = null;
|
|
|
|
|
example = 52.3;
|
|
|
|
|
description = ''
|
|
|
|
|
Latitude of your location required to calculate the time the sun rises and sets.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
longitude = mkOption {
|
|
|
|
|
type = types.nullOr (types.either types.float types.str);
|
|
|
|
|
default = null;
|
|
|
|
|
example = 4.9;
|
|
|
|
|
description = ''
|
|
|
|
|
Longitude of your location required to calculate the time the sun rises and sets.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
unit_system = mkOption {
|
|
|
|
|
type = types.nullOr (types.enum [ "metric" "imperial" ]);
|
|
|
|
|
default = null;
|
|
|
|
|
example = "metric";
|
|
|
|
|
description = ''
|
|
|
|
|
The unit system to use. This also sets temperature_unit, Celsius for Metric and Fahrenheit for Imperial.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
temperature_unit = mkOption {
|
|
|
|
|
type = types.nullOr (types.enum [ "C" "F" ]);
|
|
|
|
|
default = null;
|
|
|
|
|
example = "C";
|
|
|
|
|
description = ''
|
|
|
|
|
Override temperature unit set by unit_system. `C` for Celsius, `F` for Fahrenheit.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
time_zone = mkOption {
|
|
|
|
|
type = types.nullOr types.str;
|
|
|
|
|
default = config.time.timeZone or null;
|
|
|
|
|
defaultText = literalExpression ''
|
|
|
|
|
config.time.timeZone or null
|
|
|
|
|
'';
|
|
|
|
|
example = "Europe/Amsterdam";
|
|
|
|
|
description = ''
|
|
|
|
|
Pick your time zone from the column TZ of Wikipedia’s [list of tz database time zones](https://en.wikipedia.org/wiki/List_of_tz_database_time_zones).
|
|
|
|
|
'';
|
|
|
|
|
};
|
2020-01-28 23:09:52 +00:00
|
|
|
|
};
|
2022-01-30 01:41:15 +00:00
|
|
|
|
|
|
|
|
|
http = {
|
|
|
|
|
# https://www.home-assistant.io/integrations/http/
|
|
|
|
|
server_host = mkOption {
|
|
|
|
|
type = types.either types.str (types.listOf types.str);
|
|
|
|
|
default = [
|
|
|
|
|
"0.0.0.0"
|
|
|
|
|
"::"
|
|
|
|
|
];
|
|
|
|
|
example = "::1";
|
|
|
|
|
description = ''
|
|
|
|
|
Only listen to incoming requests on specific IP/host. The default listed assumes support for IPv4 and IPv6.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
server_port = mkOption {
|
|
|
|
|
default = 8123;
|
|
|
|
|
type = types.port;
|
|
|
|
|
description = ''
|
|
|
|
|
The port on which to listen.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
lovelace = {
|
|
|
|
|
# https://www.home-assistant.io/lovelace/dashboards/
|
|
|
|
|
mode = mkOption {
|
|
|
|
|
type = types.enum [ "yaml" "storage" ];
|
|
|
|
|
default = if cfg.lovelaceConfig != null
|
|
|
|
|
then "yaml"
|
|
|
|
|
else "storage";
|
|
|
|
|
defaultText = literalExpression ''
|
|
|
|
|
if cfg.lovelaceConfig != null
|
|
|
|
|
then "yaml"
|
|
|
|
|
else "storage";
|
|
|
|
|
'';
|
|
|
|
|
example = "yaml";
|
|
|
|
|
description = ''
|
|
|
|
|
In what mode should the main Lovelace panel be, `yaml` or `storage` (UI managed).
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
};
|
2022-02-22 11:04:04 +00:00
|
|
|
|
});
|
2021-10-03 16:06:03 +00:00
|
|
|
|
example = literalExpression ''
|
2018-01-23 09:51:13 +00:00
|
|
|
|
{
|
|
|
|
|
homeassistant = {
|
|
|
|
|
name = "Home";
|
2019-12-20 08:40:16 +00:00
|
|
|
|
latitude = "!secret latitude";
|
|
|
|
|
longitude = "!secret longitude";
|
|
|
|
|
elevation = "!secret elevation";
|
|
|
|
|
unit_system = "metric";
|
2018-01-23 09:51:13 +00:00
|
|
|
|
time_zone = "UTC";
|
|
|
|
|
};
|
2020-06-01 23:48:35 +00:00
|
|
|
|
frontend = {
|
|
|
|
|
themes = "!include_dir_merge_named themes";
|
|
|
|
|
};
|
2022-01-30 01:41:15 +00:00
|
|
|
|
http = {};
|
2018-02-01 12:42:07 +00:00
|
|
|
|
feedreader.urls = [ "https://nixos.org/blogs.xml" ];
|
2018-01-23 09:51:13 +00:00
|
|
|
|
}
|
|
|
|
|
'';
|
|
|
|
|
description = ''
|
|
|
|
|
Your {file}`configuration.yaml` as a Nix attribute set.
|
2022-01-30 01:41:15 +00:00
|
|
|
|
|
|
|
|
|
YAML functions like [secrets](https://www.home-assistant.io/docs/configuration/secrets/)
|
|
|
|
|
can be passed as a string and will be unquoted automatically.
|
|
|
|
|
|
|
|
|
|
Unless this option is explicitly set to `null`
|
|
|
|
|
we assume your {file}`configuration.yaml` is
|
|
|
|
|
managed through this module and thereby overwritten on startup.
|
2018-01-23 09:51:13 +00:00
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
2019-02-03 11:45:52 +00:00
|
|
|
|
configWritable = mkOption {
|
|
|
|
|
default = false;
|
|
|
|
|
type = types.bool;
|
|
|
|
|
description = ''
|
|
|
|
|
Whether to make {file}`configuration.yaml` writable.
|
2022-01-30 01:41:15 +00:00
|
|
|
|
|
2019-02-03 11:45:52 +00:00
|
|
|
|
This will allow you to edit it from Home Assistant's web interface.
|
2022-01-30 01:41:15 +00:00
|
|
|
|
|
|
|
|
|
This only has an effect if {option}`config` is set.
|
2019-02-03 11:45:52 +00:00
|
|
|
|
However, bear in mind that it will be overwritten at every start of the service.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
2019-01-24 14:52:05 +00:00
|
|
|
|
lovelaceConfig = mkOption {
|
|
|
|
|
default = null;
|
2022-01-30 01:41:15 +00:00
|
|
|
|
type = types.nullOr format.type;
|
|
|
|
|
# from https://www.home-assistant.io/lovelace/dashboards/
|
2021-10-03 16:06:03 +00:00
|
|
|
|
example = literalExpression ''
|
2019-01-24 14:52:05 +00:00
|
|
|
|
{
|
|
|
|
|
title = "My Awesome Home";
|
|
|
|
|
views = [ {
|
|
|
|
|
title = "Example";
|
|
|
|
|
cards = [ {
|
|
|
|
|
type = "markdown";
|
|
|
|
|
title = "Lovelace";
|
|
|
|
|
content = "Welcome to your **Lovelace UI**.";
|
|
|
|
|
} ];
|
|
|
|
|
} ];
|
|
|
|
|
}
|
|
|
|
|
'';
|
|
|
|
|
description = ''
|
|
|
|
|
Your {file}`ui-lovelace.yaml` as a Nix attribute set.
|
2022-01-30 01:41:15 +00:00
|
|
|
|
Setting this option will automatically set `lovelace.mode` to `yaml`.
|
|
|
|
|
|
2019-01-24 14:52:05 +00:00
|
|
|
|
Beware that setting this option will delete your previous {file}`ui-lovelace.yaml`
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
2019-02-03 11:45:52 +00:00
|
|
|
|
lovelaceConfigWritable = mkOption {
|
|
|
|
|
default = false;
|
|
|
|
|
type = types.bool;
|
|
|
|
|
description = ''
|
|
|
|
|
Whether to make {file}`ui-lovelace.yaml` writable.
|
2022-01-30 01:41:15 +00:00
|
|
|
|
|
2019-02-03 11:45:52 +00:00
|
|
|
|
This will allow you to edit it from Home Assistant's web interface.
|
2022-01-30 01:41:15 +00:00
|
|
|
|
|
|
|
|
|
This only has an effect if {option}`lovelaceConfig` is set.
|
2019-02-03 11:45:52 +00:00
|
|
|
|
However, bear in mind that it will be overwritten at every start of the service.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
2018-01-23 09:51:13 +00:00
|
|
|
|
package = mkOption {
|
2021-04-13 20:46:36 +00:00
|
|
|
|
default = pkgs.home-assistant.overrideAttrs (oldAttrs: {
|
|
|
|
|
doInstallCheck = false;
|
2021-04-11 22:00:57 +00:00
|
|
|
|
});
|
2021-10-03 16:06:03 +00:00
|
|
|
|
defaultText = literalExpression ''
|
2021-04-13 20:46:36 +00:00
|
|
|
|
pkgs.home-assistant.overrideAttrs (oldAttrs: {
|
|
|
|
|
doInstallCheck = false;
|
2021-04-11 22:00:57 +00:00
|
|
|
|
})
|
2021-03-06 01:47:39 +00:00
|
|
|
|
'';
|
2018-01-23 09:51:13 +00:00
|
|
|
|
type = types.package;
|
2021-10-03 16:06:03 +00:00
|
|
|
|
example = literalExpression ''
|
2018-01-23 09:51:13 +00:00
|
|
|
|
pkgs.home-assistant.override {
|
2022-01-28 21:55:27 +00:00
|
|
|
|
extraPackages = python3Packages: with python3Packages; [
|
|
|
|
|
psycopg2
|
|
|
|
|
];
|
|
|
|
|
extraComponents = [
|
|
|
|
|
"default_config"
|
|
|
|
|
"esphome"
|
|
|
|
|
"met"
|
|
|
|
|
];
|
2018-01-23 09:51:13 +00:00
|
|
|
|
}
|
|
|
|
|
'';
|
|
|
|
|
description = ''
|
2022-01-30 01:41:15 +00:00
|
|
|
|
The Home Assistant package to use.
|
2018-02-01 12:42:07 +00:00
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
2018-05-22 01:14:04 +00:00
|
|
|
|
openFirewall = mkOption {
|
|
|
|
|
default = false;
|
|
|
|
|
type = types.bool;
|
|
|
|
|
description = "Whether to open the firewall for the specified port.";
|
|
|
|
|
};
|
2018-01-23 09:51:13 +00:00
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
config = mkIf cfg.enable {
|
2022-05-03 00:16:03 +00:00
|
|
|
|
assertions = [
|
|
|
|
|
{
|
2023-03-05 21:08:45 +00:00
|
|
|
|
assertion = cfg.openFirewall -> cfg.config != null;
|
2022-05-03 00:16:03 +00:00
|
|
|
|
message = "openFirewall can only be used with a declarative config";
|
|
|
|
|
}
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
networking.firewall.allowedTCPPorts = mkIf cfg.openFirewall [ cfg.config.http.server_port ];
|
2018-05-22 01:14:04 +00:00
|
|
|
|
|
2021-12-18 22:01:33 +00:00
|
|
|
|
# symlink the configuration to /etc/home-assistant
|
|
|
|
|
environment.etc = lib.mkMerge [
|
|
|
|
|
(lib.mkIf (cfg.config != null && !cfg.configWritable) {
|
|
|
|
|
"home-assistant/configuration.yaml".source = configFile;
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
(lib.mkIf (cfg.lovelaceConfig != null && !cfg.lovelaceConfigWritable) {
|
|
|
|
|
"home-assistant/ui-lovelace.yaml".source = lovelaceConfigFile;
|
|
|
|
|
})
|
|
|
|
|
];
|
|
|
|
|
|
2018-01-23 09:51:13 +00:00
|
|
|
|
systemd.services.home-assistant = {
|
|
|
|
|
description = "Home Assistant";
|
2023-10-04 06:23:30 +00:00
|
|
|
|
wants = [ "network-online.target" ];
|
2022-02-01 20:25:12 +00:00
|
|
|
|
after = [
|
|
|
|
|
"network-online.target"
|
|
|
|
|
|
|
|
|
|
# prevent races with database creation
|
|
|
|
|
"mysql.service"
|
|
|
|
|
"postgresql.service"
|
|
|
|
|
];
|
2022-07-11 15:19:25 +00:00
|
|
|
|
reloadTriggers = lib.optional (cfg.config != null) configFile
|
|
|
|
|
++ lib.optional (cfg.lovelaceConfig != null) lovelaceConfigFile;
|
|
|
|
|
|
2022-02-12 18:47:47 +00:00
|
|
|
|
preStart = let
|
|
|
|
|
copyConfig = if cfg.configWritable then ''
|
|
|
|
|
cp --no-preserve=mode ${configFile} "${cfg.configDir}/configuration.yaml"
|
|
|
|
|
'' else ''
|
|
|
|
|
rm -f "${cfg.configDir}/configuration.yaml"
|
2021-12-18 22:01:33 +00:00
|
|
|
|
ln -s /etc/home-assistant/configuration.yaml "${cfg.configDir}/configuration.yaml"
|
2022-02-12 18:47:47 +00:00
|
|
|
|
'';
|
|
|
|
|
copyLovelaceConfig = if cfg.lovelaceConfigWritable then ''
|
2023-12-02 21:27:23 +00:00
|
|
|
|
rm -f "${cfg.configDir}/ui-lovelace.yaml"
|
2022-02-12 18:47:47 +00:00
|
|
|
|
cp --no-preserve=mode ${lovelaceConfigFile} "${cfg.configDir}/ui-lovelace.yaml"
|
|
|
|
|
'' else ''
|
2023-12-02 21:27:23 +00:00
|
|
|
|
ln -fs /etc/home-assistant/ui-lovelace.yaml "${cfg.configDir}/ui-lovelace.yaml"
|
2022-02-12 18:47:47 +00:00
|
|
|
|
'';
|
2022-01-30 23:17:10 +00:00
|
|
|
|
copyCustomLovelaceModules = if cfg.customLovelaceModules != [] then ''
|
|
|
|
|
mkdir -p "${cfg.configDir}/www"
|
|
|
|
|
ln -fns ${customLovelaceModulesDir} "${cfg.configDir}/www/nixos-lovelace-modules"
|
|
|
|
|
'' else ''
|
|
|
|
|
rm -f "${cfg.configDir}/www/nixos-lovelace-modules"
|
|
|
|
|
'';
|
2022-02-01 02:10:31 +00:00
|
|
|
|
copyCustomComponents = ''
|
|
|
|
|
mkdir -p "${cfg.configDir}/custom_components"
|
|
|
|
|
|
|
|
|
|
# remove components symlinked in from below the /nix/store
|
2023-12-20 03:19:05 +00:00
|
|
|
|
readarray -d "" components < <(find "${cfg.configDir}/custom_components" -maxdepth 1 -type l -print0)
|
|
|
|
|
for component in "''${components[@]}"; do
|
2022-02-01 02:10:31 +00:00
|
|
|
|
if [[ "$(readlink "$component")" =~ ^${escapeShellArg builtins.storeDir} ]]; then
|
|
|
|
|
rm "$component"
|
|
|
|
|
fi
|
|
|
|
|
done
|
|
|
|
|
|
|
|
|
|
# recreate symlinks for desired components
|
|
|
|
|
declare -a components=(${escapeShellArgs cfg.customComponents})
|
|
|
|
|
for component in "''${components[@]}"; do
|
2024-06-23 16:41:00 +00:00
|
|
|
|
readarray -t manifests < <(find "$component" -name manifest.json)
|
|
|
|
|
readarray -t paths < <(dirname "''${manifests[@]}")
|
|
|
|
|
ln -fns "''${paths[@]}" "${cfg.configDir}/custom_components/"
|
2022-02-01 02:10:31 +00:00
|
|
|
|
done
|
|
|
|
|
'';
|
2022-02-12 18:47:47 +00:00
|
|
|
|
in
|
|
|
|
|
(optionalString (cfg.config != null) copyConfig) +
|
2022-01-30 23:17:10 +00:00
|
|
|
|
(optionalString (cfg.lovelaceConfig != null) copyLovelaceConfig) +
|
2022-02-01 02:10:31 +00:00
|
|
|
|
copyCustomLovelaceModules +
|
|
|
|
|
copyCustomComponents
|
2022-02-12 18:47:47 +00:00
|
|
|
|
;
|
2023-02-20 15:54:37 +00:00
|
|
|
|
environment.PYTHONPATH = package.pythonPath;
|
2021-04-24 12:52:14 +00:00
|
|
|
|
serviceConfig = let
|
|
|
|
|
# List of capabilities to equip home-assistant with, depending on configured components
|
2022-08-04 10:23:21 +00:00
|
|
|
|
capabilities = lib.unique ([
|
2021-04-24 12:52:14 +00:00
|
|
|
|
# Empty string first, so we will never accidentally have an empty capability bounding set
|
|
|
|
|
# https://github.com/NixOS/nixpkgs/issues/120617#issuecomment-830685115
|
|
|
|
|
""
|
2022-09-29 00:13:54 +00:00
|
|
|
|
] ++ lib.optionals (builtins.any useComponent componentsUsingBluetooth) [
|
2022-08-04 10:23:21 +00:00
|
|
|
|
# Required for interaction with hci devices and bluetooth sockets, identified by bluetooth-adapters dependency
|
2021-04-24 12:52:14 +00:00
|
|
|
|
# https://www.home-assistant.io/integrations/bluetooth_le_tracker/#rootless-setup-on-core-installs
|
|
|
|
|
"CAP_NET_ADMIN"
|
|
|
|
|
"CAP_NET_RAW"
|
|
|
|
|
] ++ lib.optionals (useComponent "emulated_hue") [
|
|
|
|
|
# Alexa looks for the service on port 80
|
|
|
|
|
# https://www.home-assistant.io/integrations/emulated_hue
|
|
|
|
|
"CAP_NET_BIND_SERVICE"
|
|
|
|
|
] ++ lib.optionals (useComponent "nmap_tracker") [
|
|
|
|
|
# https://www.home-assistant.io/integrations/nmap_tracker#linux-capabilities
|
|
|
|
|
"CAP_NET_ADMIN"
|
|
|
|
|
"CAP_NET_BIND_SERVICE"
|
|
|
|
|
"CAP_NET_RAW"
|
2022-08-04 10:23:21 +00:00
|
|
|
|
]);
|
2021-06-16 19:31:24 +00:00
|
|
|
|
componentsUsingBluetooth = [
|
|
|
|
|
# Components that require the AF_BLUETOOTH address family
|
2022-09-29 00:13:54 +00:00
|
|
|
|
"august"
|
2022-11-05 11:39:00 +00:00
|
|
|
|
"august_ble"
|
|
|
|
|
"airthings_ble"
|
2022-12-07 23:23:16 +00:00
|
|
|
|
"aranet"
|
2022-09-29 00:13:54 +00:00
|
|
|
|
"bluemaestro"
|
|
|
|
|
"bluetooth"
|
2023-02-01 23:16:02 +00:00
|
|
|
|
"bluetooth_adapters"
|
2021-06-16 19:31:24 +00:00
|
|
|
|
"bluetooth_le_tracker"
|
2022-09-29 00:13:54 +00:00
|
|
|
|
"bluetooth_tracker"
|
|
|
|
|
"bthome"
|
|
|
|
|
"default_config"
|
2023-02-01 23:16:02 +00:00
|
|
|
|
"eufylife_ble"
|
2022-09-29 00:13:54 +00:00
|
|
|
|
"esphome"
|
|
|
|
|
"fjaraskupan"
|
2023-08-02 18:56:18 +00:00
|
|
|
|
"gardena_bluetooth"
|
2022-09-29 00:13:54 +00:00
|
|
|
|
"govee_ble"
|
|
|
|
|
"homekit_controller"
|
|
|
|
|
"inkbird"
|
2023-11-01 18:51:59 +00:00
|
|
|
|
"improv_ble"
|
2022-11-05 11:39:00 +00:00
|
|
|
|
"keymitt_ble"
|
2024-02-10 02:24:22 +00:00
|
|
|
|
"leaone-ble"
|
2022-09-29 00:13:54 +00:00
|
|
|
|
"led_ble"
|
2023-10-05 00:10:06 +00:00
|
|
|
|
"medcom_ble"
|
2022-09-29 00:13:54 +00:00
|
|
|
|
"melnor"
|
|
|
|
|
"moat"
|
2023-02-01 23:16:02 +00:00
|
|
|
|
"mopeka"
|
2022-11-05 11:39:00 +00:00
|
|
|
|
"oralb"
|
2023-10-05 00:10:06 +00:00
|
|
|
|
"private_ble_device"
|
2022-09-29 00:13:54 +00:00
|
|
|
|
"qingping"
|
2023-05-04 00:26:33 +00:00
|
|
|
|
"rapt_ble"
|
2023-02-01 23:16:02 +00:00
|
|
|
|
"ruuvi_gateway"
|
2022-12-07 23:23:16 +00:00
|
|
|
|
"ruuvitag_ble"
|
|
|
|
|
"sensirion_ble"
|
2022-09-29 00:13:54 +00:00
|
|
|
|
"sensorpro"
|
|
|
|
|
"sensorpush"
|
2022-12-07 23:23:16 +00:00
|
|
|
|
"shelly"
|
2022-11-05 11:39:00 +00:00
|
|
|
|
"snooz"
|
2022-09-29 00:13:54 +00:00
|
|
|
|
"switchbot"
|
|
|
|
|
"thermobeacon"
|
|
|
|
|
"thermopro"
|
2022-11-05 11:39:00 +00:00
|
|
|
|
"tilt_ble"
|
2022-09-29 00:13:54 +00:00
|
|
|
|
"xiaomi_ble"
|
|
|
|
|
"yalexs_ble"
|
2021-06-16 19:31:24 +00:00
|
|
|
|
];
|
2022-01-25 17:29:16 +00:00
|
|
|
|
componentsUsingPing = [
|
|
|
|
|
# Components that require the capset syscall for the ping wrapper
|
|
|
|
|
"ping"
|
|
|
|
|
"wake_on_lan"
|
|
|
|
|
];
|
2021-06-16 19:31:24 +00:00
|
|
|
|
componentsUsingSerialDevices = [
|
|
|
|
|
# Components that require access to serial devices (/dev/tty*)
|
|
|
|
|
# List generated from home-assistant documentation:
|
|
|
|
|
# git clone https://github.com/home-assistant/home-assistant.io/
|
|
|
|
|
# cd source/_integrations
|
|
|
|
|
# rg "/dev/tty" -l | cut -d'/' -f3 | cut -d'.' -f1 | sort
|
|
|
|
|
# And then extended by references found in the source code, these
|
|
|
|
|
# mostly the ones using config flows already.
|
|
|
|
|
"acer_projector"
|
|
|
|
|
"alarmdecoder"
|
|
|
|
|
"blackbird"
|
2021-08-24 10:09:12 +00:00
|
|
|
|
"deconz"
|
2021-06-16 19:31:24 +00:00
|
|
|
|
"dsmr"
|
|
|
|
|
"edl21"
|
|
|
|
|
"elkm1"
|
|
|
|
|
"elv"
|
|
|
|
|
"enocean"
|
|
|
|
|
"firmata"
|
|
|
|
|
"flexit"
|
|
|
|
|
"gpsd"
|
|
|
|
|
"insteon"
|
|
|
|
|
"kwb"
|
|
|
|
|
"lacrosse"
|
|
|
|
|
"modbus"
|
|
|
|
|
"modem_callerid"
|
|
|
|
|
"mysensors"
|
|
|
|
|
"nad"
|
|
|
|
|
"numato"
|
2023-04-05 21:30:43 +00:00
|
|
|
|
"otbr"
|
2021-06-16 19:31:24 +00:00
|
|
|
|
"rflink"
|
|
|
|
|
"rfxtrx"
|
|
|
|
|
"scsgate"
|
|
|
|
|
"serial"
|
|
|
|
|
"serial_pm"
|
|
|
|
|
"sms"
|
|
|
|
|
"upb"
|
2021-09-15 16:18:49 +00:00
|
|
|
|
"usb"
|
2021-06-16 19:31:24 +00:00
|
|
|
|
"velbus"
|
|
|
|
|
"w800rf32"
|
|
|
|
|
"zha"
|
2021-07-08 11:27:03 +00:00
|
|
|
|
"zwave"
|
2021-09-15 16:18:49 +00:00
|
|
|
|
"zwave_js"
|
2021-06-16 19:31:24 +00:00
|
|
|
|
];
|
2021-04-24 12:52:14 +00:00
|
|
|
|
in {
|
2022-02-03 00:37:20 +00:00
|
|
|
|
ExecStart = "${package}/bin/hass --config '${cfg.configDir}'";
|
2020-05-31 08:22:22 +00:00
|
|
|
|
ExecReload = "${pkgs.coreutils}/bin/kill -HUP $MAINPID";
|
2018-01-23 09:51:13 +00:00
|
|
|
|
User = "hass";
|
|
|
|
|
Group = "hass";
|
2024-08-26 16:39:06 +00:00
|
|
|
|
WorkingDirectory = cfg.configDir;
|
2018-01-23 09:51:13 +00:00
|
|
|
|
Restart = "on-failure";
|
2021-04-26 00:39:09 +00:00
|
|
|
|
RestartForceExitStatus = "100";
|
|
|
|
|
SuccessExitStatus = "100";
|
2021-04-24 12:52:14 +00:00
|
|
|
|
KillSignal = "SIGINT";
|
|
|
|
|
|
|
|
|
|
# Hardening
|
|
|
|
|
AmbientCapabilities = capabilities;
|
|
|
|
|
CapabilityBoundingSet = capabilities;
|
2021-06-16 19:31:24 +00:00
|
|
|
|
DeviceAllow = (optionals (any useComponent componentsUsingSerialDevices) [
|
2021-04-24 12:52:14 +00:00
|
|
|
|
"char-ttyACM rw"
|
|
|
|
|
"char-ttyAMA rw"
|
|
|
|
|
"char-ttyUSB rw"
|
2021-06-16 19:31:24 +00:00
|
|
|
|
]);
|
2021-04-24 12:52:14 +00:00
|
|
|
|
DevicePolicy = "closed";
|
|
|
|
|
LockPersonality = true;
|
|
|
|
|
MemoryDenyWriteExecute = true;
|
|
|
|
|
NoNewPrivileges = true;
|
|
|
|
|
PrivateTmp = true;
|
|
|
|
|
PrivateUsers = false; # prevents gaining capabilities in the host namespace
|
|
|
|
|
ProtectClock = true;
|
|
|
|
|
ProtectControlGroups = true;
|
|
|
|
|
ProtectHome = true;
|
|
|
|
|
ProtectHostname = true;
|
|
|
|
|
ProtectKernelLogs = true;
|
|
|
|
|
ProtectKernelModules = true;
|
|
|
|
|
ProtectKernelTunables = true;
|
|
|
|
|
ProtectProc = "invisible";
|
2021-05-06 14:44:16 +00:00
|
|
|
|
ProcSubset = "all";
|
2018-01-23 09:51:13 +00:00
|
|
|
|
ProtectSystem = "strict";
|
2021-04-24 12:52:14 +00:00
|
|
|
|
RemoveIPC = true;
|
2020-11-19 12:29:03 +00:00
|
|
|
|
ReadWritePaths = let
|
2021-04-24 12:52:14 +00:00
|
|
|
|
# Allow rw access to explicitly configured paths
|
2020-11-19 12:29:03 +00:00
|
|
|
|
cfgPath = [ "config" "homeassistant" "allowlist_external_dirs" ];
|
|
|
|
|
value = attrByPath cfgPath [] cfg;
|
|
|
|
|
allowPaths = if isList value then value else singleton value;
|
|
|
|
|
in [ "${cfg.configDir}" ] ++ allowPaths;
|
2021-04-24 12:52:14 +00:00
|
|
|
|
RestrictAddressFamilies = [
|
|
|
|
|
"AF_INET"
|
|
|
|
|
"AF_INET6"
|
2021-05-06 14:44:16 +00:00
|
|
|
|
"AF_NETLINK"
|
|
|
|
|
"AF_UNIX"
|
2021-06-16 19:31:24 +00:00
|
|
|
|
] ++ optionals (any useComponent componentsUsingBluetooth) [
|
2021-04-24 12:52:14 +00:00
|
|
|
|
"AF_BLUETOOTH"
|
|
|
|
|
];
|
|
|
|
|
RestrictNamespaces = true;
|
|
|
|
|
RestrictRealtime = true;
|
|
|
|
|
RestrictSUIDSGID = true;
|
2021-06-16 19:31:24 +00:00
|
|
|
|
SupplementaryGroups = optionals (any useComponent componentsUsingSerialDevices) [
|
|
|
|
|
"dialout"
|
|
|
|
|
];
|
2021-04-24 12:52:14 +00:00
|
|
|
|
SystemCallArchitectures = "native";
|
|
|
|
|
SystemCallFilter = [
|
|
|
|
|
"@system-service"
|
|
|
|
|
"~@privileged"
|
2022-01-25 17:29:16 +00:00
|
|
|
|
] ++ optionals (any useComponent componentsUsingPing) [
|
|
|
|
|
"capset"
|
2023-09-07 02:27:20 +00:00
|
|
|
|
"setuid"
|
2021-04-24 12:52:14 +00:00
|
|
|
|
];
|
|
|
|
|
UMask = "0077";
|
2018-01-23 09:51:13 +00:00
|
|
|
|
};
|
2018-03-18 11:46:36 +00:00
|
|
|
|
path = [
|
2023-09-07 02:27:20 +00:00
|
|
|
|
pkgs.unixtools.ping # needed for ping
|
2018-03-18 11:46:36 +00:00
|
|
|
|
];
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
systemd.targets.home-assistant = rec {
|
|
|
|
|
description = "Home Assistant";
|
|
|
|
|
wantedBy = [ "multi-user.target" ];
|
|
|
|
|
wants = [ "home-assistant.service" ];
|
|
|
|
|
after = wants;
|
2018-01-23 09:51:13 +00:00
|
|
|
|
};
|
|
|
|
|
|
2018-06-29 23:58:35 +00:00
|
|
|
|
users.users.hass = {
|
2018-01-23 09:51:13 +00:00
|
|
|
|
home = cfg.configDir;
|
|
|
|
|
createHome = true;
|
|
|
|
|
group = "hass";
|
|
|
|
|
uid = config.ids.uids.hass;
|
|
|
|
|
};
|
|
|
|
|
|
2018-06-29 23:58:35 +00:00
|
|
|
|
users.groups.hass.gid = config.ids.gids.hass;
|
2018-01-23 09:51:13 +00:00
|
|
|
|
};
|
|
|
|
|
}
|