{ config, pkgs, lib, ... }: let cfg = config.services.meshcentral; configFormat = pkgs.formats.json {}; configFile = configFormat.generate "meshcentral-config.json" cfg.settings; in with lib; { options.services.meshcentral = with types; { enable = mkEnableOption "MeshCentral computer management server"; package = mkPackageOption pkgs "meshcentral" { }; settings = mkOption { description = '' Settings for MeshCentral. Refer to upstream documentation for details: - [JSON Schema definition](https://github.com/Ylianst/MeshCentral/blob/master/meshcentral-config-schema.json) - [simple sample configuration](https://github.com/Ylianst/MeshCentral/blob/master/sample-config.json) - [complex sample configuration](https://github.com/Ylianst/MeshCentral/blob/master/sample-config-advanced.json) - [Old homepage with documentation link](https://www.meshcommander.com/meshcentral2) ''; type = types.submodule { freeformType = configFormat.type; }; example = { settings = { WANonly = true; Cert = "meshcentral.example.com"; TlsOffload = "10.0.0.2,fd42::2"; Port = 4430; }; domains."".certUrl = "https://meshcentral.example.com/"; }; }; }; config = mkIf cfg.enable { services.meshcentral.settings.settings.autoBackup.backupPath = lib.mkDefault "/var/lib/meshcentral/backups"; systemd.services.meshcentral = { wantedBy = ["multi-user.target"]; serviceConfig = { ExecStart = "${cfg.package}/bin/meshcentral --datapath /var/lib/meshcentral --configfile ${configFile}"; DynamicUser = true; StateDirectory = "meshcentral"; CacheDirectory = "meshcentral"; }; }; }; meta.maintainers = [ maintainers.lheckemann ]; }