mirror of
https://github.com/NixOS/nixpkgs.git
synced 2025-01-09 14:33:22 +00:00
2e751c0772
the conversion procedure is simple: - find all things that look like options, ie calls to either `mkOption` or `lib.mkOption` that take an attrset. remember the attrset as the option - for all options, find a `description` attribute who's value is not a call to `mdDoc` or `lib.mdDoc` - textually convert the entire value of the attribute to MD with a few simple regexes (the set from mdize-module.sh) - if the change produced a change in the manual output, discard - if the change kept the manual unchanged, add some text to the description to make sure we've actually found an option. if the manual changes this time, keep the converted description this procedure converts 80% of nixos options to markdown. around 2000 options remain to be inspected, but most of those fail the "does not change the manual output check": currently the MD conversion process does not faithfully convert docbook tags like <code> and <package>, so any option using such tags will not be converted at all.
293 lines
9.3 KiB
Nix
293 lines
9.3 KiB
Nix
{ lib, pkgs, config, ... }:
|
|
|
|
with lib;
|
|
|
|
let
|
|
cfg = config.services.plausible;
|
|
|
|
in {
|
|
options.services.plausible = {
|
|
enable = mkEnableOption "plausible";
|
|
|
|
releaseCookiePath = mkOption {
|
|
type = with types; either str path;
|
|
description = lib.mdDoc ''
|
|
The path to the file with release cookie. (used for remote connection to the running node).
|
|
'';
|
|
};
|
|
|
|
adminUser = {
|
|
name = mkOption {
|
|
default = "admin";
|
|
type = types.str;
|
|
description = lib.mdDoc ''
|
|
Name of the admin user that plausible will created on initial startup.
|
|
'';
|
|
};
|
|
|
|
email = mkOption {
|
|
type = types.str;
|
|
example = "admin@localhost";
|
|
description = lib.mdDoc ''
|
|
Email-address of the admin-user.
|
|
'';
|
|
};
|
|
|
|
passwordFile = mkOption {
|
|
type = types.either types.str types.path;
|
|
description = lib.mdDoc ''
|
|
Path to the file which contains the password of the admin user.
|
|
'';
|
|
};
|
|
|
|
activate = mkEnableOption "activating the freshly created admin-user";
|
|
};
|
|
|
|
database = {
|
|
clickhouse = {
|
|
setup = mkEnableOption "creating a clickhouse instance" // { default = true; };
|
|
url = mkOption {
|
|
default = "http://localhost:8123/default";
|
|
type = types.str;
|
|
description = ''
|
|
The URL to be used to connect to <package>clickhouse</package>.
|
|
'';
|
|
};
|
|
};
|
|
postgres = {
|
|
setup = mkEnableOption "creating a postgresql instance" // { default = true; };
|
|
dbname = mkOption {
|
|
default = "plausible";
|
|
type = types.str;
|
|
description = lib.mdDoc ''
|
|
Name of the database to use.
|
|
'';
|
|
};
|
|
socket = mkOption {
|
|
default = "/run/postgresql";
|
|
type = types.str;
|
|
description = ''
|
|
Path to the UNIX domain-socket to communicate with <package>postgres</package>.
|
|
'';
|
|
};
|
|
};
|
|
};
|
|
|
|
server = {
|
|
disableRegistration = mkOption {
|
|
default = true;
|
|
type = types.bool;
|
|
description = lib.mdDoc ''
|
|
Whether to prohibit creating an account in plausible's UI.
|
|
'';
|
|
};
|
|
secretKeybaseFile = mkOption {
|
|
type = types.either types.path types.str;
|
|
description = lib.mdDoc ''
|
|
Path to the secret used by the `phoenix`-framework. Instructions
|
|
how to generate one are documented in the
|
|
[
|
|
framework docs](https://hexdocs.pm/phoenix/Mix.Tasks.Phx.Gen.Secret.html#content).
|
|
'';
|
|
};
|
|
port = mkOption {
|
|
default = 8000;
|
|
type = types.port;
|
|
description = lib.mdDoc ''
|
|
Port where the service should be available.
|
|
'';
|
|
};
|
|
baseUrl = mkOption {
|
|
type = types.str;
|
|
description = lib.mdDoc ''
|
|
Public URL where plausible is available.
|
|
|
|
Note that `/path` components are currently ignored:
|
|
[
|
|
https://github.com/plausible/analytics/issues/1182
|
|
](https://github.com/plausible/analytics/issues/1182).
|
|
'';
|
|
};
|
|
};
|
|
|
|
mail = {
|
|
email = mkOption {
|
|
default = "hello@plausible.local";
|
|
type = types.str;
|
|
description = lib.mdDoc ''
|
|
The email id to use for as *from* address of all communications
|
|
from Plausible.
|
|
'';
|
|
};
|
|
smtp = {
|
|
hostAddr = mkOption {
|
|
default = "localhost";
|
|
type = types.str;
|
|
description = lib.mdDoc ''
|
|
The host address of your smtp server.
|
|
'';
|
|
};
|
|
hostPort = mkOption {
|
|
default = 25;
|
|
type = types.port;
|
|
description = lib.mdDoc ''
|
|
The port of your smtp server.
|
|
'';
|
|
};
|
|
user = mkOption {
|
|
default = null;
|
|
type = types.nullOr types.str;
|
|
description = lib.mdDoc ''
|
|
The username/email in case SMTP auth is enabled.
|
|
'';
|
|
};
|
|
passwordFile = mkOption {
|
|
default = null;
|
|
type = with types; nullOr (either str path);
|
|
description = lib.mdDoc ''
|
|
The path to the file with the password in case SMTP auth is enabled.
|
|
'';
|
|
};
|
|
enableSSL = mkEnableOption "SSL when connecting to the SMTP server";
|
|
retries = mkOption {
|
|
type = types.ints.unsigned;
|
|
default = 2;
|
|
description = lib.mdDoc ''
|
|
Number of retries to make until mailer gives up.
|
|
'';
|
|
};
|
|
};
|
|
};
|
|
};
|
|
|
|
config = mkIf cfg.enable {
|
|
assertions = [
|
|
{ assertion = cfg.adminUser.activate -> cfg.database.postgres.setup;
|
|
message = ''
|
|
Unable to automatically activate the admin-user if no locally managed DB for
|
|
postgres (`services.plausible.database.postgres.setup') is enabled!
|
|
'';
|
|
}
|
|
];
|
|
|
|
services.postgresql = mkIf cfg.database.postgres.setup {
|
|
enable = true;
|
|
};
|
|
|
|
services.clickhouse = mkIf cfg.database.clickhouse.setup {
|
|
enable = true;
|
|
};
|
|
|
|
services.epmd.enable = true;
|
|
|
|
environment.systemPackages = [ pkgs.plausible ];
|
|
|
|
systemd.services = mkMerge [
|
|
{
|
|
plausible = {
|
|
inherit (pkgs.plausible.meta) description;
|
|
documentation = [ "https://plausible.io/docs/self-hosting" ];
|
|
wantedBy = [ "multi-user.target" ];
|
|
after = optionals cfg.database.postgres.setup [ "postgresql.service" "plausible-postgres.service" ];
|
|
requires = optional cfg.database.clickhouse.setup "clickhouse.service"
|
|
++ optionals cfg.database.postgres.setup [
|
|
"postgresql.service"
|
|
"plausible-postgres.service"
|
|
];
|
|
|
|
environment = {
|
|
# NixOS specific option to avoid that it's trying to write into its store-path.
|
|
# See also https://github.com/lau/tzdata#data-directory-and-releases
|
|
STORAGE_DIR = "/var/lib/plausible/elixir_tzdata";
|
|
|
|
# Configuration options from
|
|
# https://plausible.io/docs/self-hosting-configuration
|
|
PORT = toString cfg.server.port;
|
|
DISABLE_REGISTRATION = boolToString cfg.server.disableRegistration;
|
|
|
|
RELEASE_TMP = "/var/lib/plausible/tmp";
|
|
# Home is needed to connect to the node with iex
|
|
HOME = "/var/lib/plausible";
|
|
|
|
ADMIN_USER_NAME = cfg.adminUser.name;
|
|
ADMIN_USER_EMAIL = cfg.adminUser.email;
|
|
|
|
DATABASE_SOCKET_DIR = cfg.database.postgres.socket;
|
|
DATABASE_NAME = cfg.database.postgres.dbname;
|
|
CLICKHOUSE_DATABASE_URL = cfg.database.clickhouse.url;
|
|
|
|
BASE_URL = cfg.server.baseUrl;
|
|
|
|
MAILER_EMAIL = cfg.mail.email;
|
|
SMTP_HOST_ADDR = cfg.mail.smtp.hostAddr;
|
|
SMTP_HOST_PORT = toString cfg.mail.smtp.hostPort;
|
|
SMTP_RETRIES = toString cfg.mail.smtp.retries;
|
|
SMTP_HOST_SSL_ENABLED = boolToString cfg.mail.smtp.enableSSL;
|
|
|
|
SELFHOST = "true";
|
|
} // (optionalAttrs (cfg.mail.smtp.user != null) {
|
|
SMTP_USER_NAME = cfg.mail.smtp.user;
|
|
});
|
|
|
|
path = [ pkgs.plausible ]
|
|
++ optional cfg.database.postgres.setup config.services.postgresql.package;
|
|
script = ''
|
|
export CONFIG_DIR=$CREDENTIALS_DIRECTORY
|
|
|
|
export RELEASE_COOKIE="$(< $CREDENTIALS_DIRECTORY/RELEASE_COOKIE )"
|
|
|
|
# setup
|
|
${pkgs.plausible}/createdb.sh
|
|
${pkgs.plausible}/migrate.sh
|
|
${optionalString cfg.adminUser.activate ''
|
|
if ! ${pkgs.plausible}/init-admin.sh | grep 'already exists'; then
|
|
psql -d plausible <<< "UPDATE users SET email_verified=true;"
|
|
fi
|
|
''}
|
|
|
|
exec plausible start
|
|
'';
|
|
|
|
serviceConfig = {
|
|
DynamicUser = true;
|
|
PrivateTmp = true;
|
|
WorkingDirectory = "/var/lib/plausible";
|
|
StateDirectory = "plausible";
|
|
LoadCredential = [
|
|
"ADMIN_USER_PWD:${cfg.adminUser.passwordFile}"
|
|
"SECRET_KEY_BASE:${cfg.server.secretKeybaseFile}"
|
|
"RELEASE_COOKIE:${cfg.releaseCookiePath}"
|
|
] ++ lib.optionals (cfg.mail.smtp.passwordFile != null) [ "SMTP_USER_PWD:${cfg.mail.smtp.passwordFile}"];
|
|
};
|
|
};
|
|
}
|
|
(mkIf cfg.database.postgres.setup {
|
|
# `plausible' requires the `citext'-extension.
|
|
plausible-postgres = {
|
|
after = [ "postgresql.service" ];
|
|
partOf = [ "plausible.service" ];
|
|
serviceConfig = {
|
|
Type = "oneshot";
|
|
User = config.services.postgresql.superUser;
|
|
RemainAfterExit = true;
|
|
};
|
|
script = with cfg.database.postgres; ''
|
|
PSQL() {
|
|
${config.services.postgresql.package}/bin/psql --port=5432 "$@"
|
|
}
|
|
# check if the database already exists
|
|
if ! PSQL -lqt | ${pkgs.coreutils}/bin/cut -d \| -f 1 | ${pkgs.gnugrep}/bin/grep -qw ${dbname} ; then
|
|
PSQL -tAc "CREATE ROLE plausible WITH LOGIN;"
|
|
PSQL -tAc "CREATE DATABASE ${dbname} WITH OWNER plausible;"
|
|
PSQL -d ${dbname} -tAc "CREATE EXTENSION IF NOT EXISTS citext;"
|
|
fi
|
|
'';
|
|
};
|
|
})
|
|
];
|
|
};
|
|
|
|
meta.maintainers = with maintainers; [ ma27 ];
|
|
meta.doc = ./plausible.xml;
|
|
}
|