refactor: switch from modules to import arrays

2025-10-22 01:22:05 +11:00 · 2025-10-22 01:22:05 +11:00 · 41eaa38d31
commit 41eaa38d31
parent d893750c09
75 changed files with 1870 additions and 2541 deletions
--- a/modules/nixos/features/vaultwarden.nix
+++ b/modules/nixos/features/vaultwarden.nix
@ -1,33 +1,28 @@
 {
  config,
-  lib,
  ...
 }:
 let
-  feature = "vaultwarden";
  port = "5001";
 in
 {
-  config = lib.mkIf config.${feature}.enable {
-    services = {
-      vaultwarden = {
-        enable = true;
-        backupDir = "/srv/vaultwarden";
-        config = {
-          rocketPort = "${port}";
-          domain = "https://vaultwarden.fi33.buzz";
-          signupsAllowed = false;
-          invitationsAllowed = false;
-          showPasswordHint = false;
-          useSyslog = true;
-          extendedLogging = true;
-          adminTokenFile = "${config.age.secrets.vaultwarden-admin.path}";
-        };
+  services = {
+    vaultwarden = {
+      enable = true;
+      backupDir = "/srv/vaultwarden";
+      config = {
+        rocketPort = "${port}";
+        domain = "https://vaultwarden.fi33.buzz";
+        signupsAllowed = false;
+        invitationsAllowed = false;
+        showPasswordHint = false;
+        useSyslog = true;
+        extendedLogging = true;
+        adminTokenFile = "${config.age.secrets.vaultwarden-admin.path}";
      };
    };

-    # reverse proxy
-    services.nginx.virtualHosts."${feature}.fi33.buzz" = {
+    nginx.virtualHosts."vaultwarden.fi33.buzz" = {
      forceSSL = true;
      useACMEHost = "fi33.buzz";
      locations."/" = {
@ -35,13 +30,10 @@ in
        proxyWebsockets = true;
      };
    };
-
-    # secrets
-    age.secrets."vaultwarden-admin" = {
-      file = ../../../secrets/vaultwarden-admin.age;
-      owner = "vaultwarden";
-    };
  };

-  options.${feature}.enable = lib.mkEnableOption "enables ${feature}";
+  age.secrets."vaultwarden-admin" = {
+    file = ../../../secrets/vaultwarden-admin.age;
+    owner = "vaultwarden";
+  };
 }