immich-container/immich-container.nix

{ config, lib, pkgs, ... }:

with lib;
let
  cfg = config.services.immichContainer;
  hostname = config.instance.hostname;

  mkEnvFile = attrs:
    pkgs.writeText "env-file"
    (concatStringsSep "\n" (mapAttrsToList (k: v: "${k}=${v}") attrs));

  databasePassword = pkgs.lib.passwd.stablerandom-passwd-file "immich-db-passwd"
    config.instance.build-seed;

  hostSecrets = config.fudo.secrets.host-secrets."${hostname}";

in {
  options.services.immichContainer = with types; {
    enable =
      mkEnableOption "Enable Immich photo server running in a container.";

    state-directory = mkOption {
      type = str;
      description = "Path at which to store server state.";
    };

    store-directory = mkOption {
      type = str;
      description = "Path at which to store bulk server data.";
    };

    port = mkOption {
      type = port;
      description = "Port on which to listen for requests.";
      default = 3254;
    };

    images = {
      immich = mkOption {
        type = str;
        description = "Immich server docker image to use.";
      };
      immich-ml = mkOption {
        type = str;
        description = "Immich Machine Learning docker image to use.";
      };
      redis = mkOption {
        type = str;
        description = "Redis server docker image to use.";
      };
      postgresql = mkOption {
        type = str;
        description = "Postgresql server docker image to use.";
      };
    };
  };

  config = {
    fudo.secrets.host-secrets."${hostname}".immichEnv = {
      source-file = mkEnvFile {
        DB_HOSTNAME = "database";
        DB_USERNAME = "immich";
        DB_DATABASE_NAME = "immich";
        DB_PASSWORD = readFile databasePassword;
        REDIS_HOSTNAME = "redis";
      };
      target-file = "/run/immich/env";
    };

    systemd.tmpfiles.rules = [
      "d ${cfg.state-directory} 0750 root root - -"
      "d ${cfg.store-directory} 0750 root root - -"
    ];

    virtualisation.arion.projects.immich.settings = let
      image = { ... }: {
        project.name = "immich";
        services = {
          immich = {
            service = {
              image = cfg.images.immich;
              restart = "always";
              ports = [ "${toString cfg.port}:3001" ];
              command = [ "start.sh" "immich" ];
              depends_on =
                [ "redis" "database" "immich-ml" "immich-microservices" ];
              volumes = [
                "${cfg.store-directory}:/usr/src/app/upload"
                "/etc/localtime:/etc/localtime:ro"
              ];
              env_file = [ hostSecrets.immichEnv.target-file ];
            };
          };

          immich-microservices = {
            service = {
              image = cfg.images.immich;
              restart = "always";
              command = [ "start.sh" "microservices" ];
              depends_on = [ "redis" "database" "immich-ml" ];
              volumes = [
                "${cfg.store-directory}:/usr/src/app/upload"
                "/etc/localtime:/etc/localtime:ro"
              ];
              env_file = [ hostSecrets.immichEnv.target-file ];
            };
          };

          immich-ml = {
            service = {
              image = cfg.images.immich-ml;
              restart = "always";
              volumes = [ "${cfg.state-directory}/model-cache:/cache" ];
              env_file = [ hostSecrets.immichEnv.target-file ];
            };
          };

          redis.service = {
            image = cfg.images.redis;
            restart = "always";
            volumes = [ "${cfg.state-directory}/redis:/var/lib/redis" ];
          };

          database = {
            service = {
              image = cfg.images.postgresql;
              restart = "always";
              volumes =
                [ "${cfg.state-directory}/database:/var/lib/postgresql/data" ];
              env_file = [ hostSecrets.immichEnv.target-file ];
            };
          };
        };
      };
    in { imports = [ image ]; };
  };
}
Initial checkin 2024-02-07 14:09:35 -08:00			`{ config, lib, pkgs, ... }:`

			`with lib;`
Add env file 2024-02-07 15:11:07 -08:00			`let`
			`cfg = config.services.immichContainer;`
			`hostname = config.instance.hostname;`

			`mkEnvFile = attrs:`
writeText is in pkgs 2024-02-07 15:18:42 -08:00			`pkgs.writeText "env-file"`
Should be a path, not a string 2024-02-07 15:16:33 -08:00			`(concatStringsSep "\n" (mapAttrsToList (k: v: "${k}=${v}") attrs));`
Add env file 2024-02-07 15:11:07 -08:00
			`databasePassword = pkgs.lib.passwd.stablerandom-passwd-file "immich-db-passwd"`
			`config.instance.build-seed;`

Define host-secrets 2024-02-07 15:25:52 -08:00			`hostSecrets = config.fudo.secrets.host-secrets."${hostname}";`

Initial checkin 2024-02-07 14:09:35 -08:00			`in {`
			`options.services.immichContainer = with types; {`
			`enable =`
			`mkEnableOption "Enable Immich photo server running in a container.";`

			`state-directory = mkOption {`
			`type = str;`
			`description = "Path at which to store server state.";`
			`};`

			`store-directory = mkOption {`
			`type = str;`
			`description = "Path at which to store bulk server data.";`
			`};`

Add port option 2024-02-07 14:32:51 -08:00			`port = mkOption {`
			`type = port;`
			`description = "Port on which to listen for requests.";`
			`default = 3254;`
			`};`

Initial checkin 2024-02-07 14:09:35 -08:00			`images = {`
			`immich = mkOption {`
			`type = str;`
			`description = "Immich server docker image to use.";`
			`};`
			`immich-ml = mkOption {`
			`type = str;`
			`description = "Immich Machine Learning docker image to use.";`
			`};`
			`redis = mkOption {`
			`type = str;`
			`description = "Redis server docker image to use.";`
			`};`
			`postgresql = mkOption {`
			`type = str;`
			`description = "Postgresql server docker image to use.";`
			`};`
			`};`
			`};`

			`config = {`
Add env file 2024-02-07 15:11:07 -08:00			`fudo.secrets.host-secrets."${hostname}".immichEnv = {`
			`source-file = mkEnvFile {`
Specify hostnames 2024-02-07 15:36:09 -08:00			`DB_HOSTNAME = "database";`
Add env file 2024-02-07 15:11:07 -08:00			`DB_USERNAME = "immich";`
			`DB_DATABASE_NAME = "immich";`
			`DB_PASSWORD = readFile databasePassword;`
Specify hostnames 2024-02-07 15:36:09 -08:00			`REDIS_HOSTNAME = "redis";`
Add env file 2024-02-07 15:11:07 -08:00			`};`
			`target-file = "/run/immich/env";`
			`};`

Ensure state dirs exist 2024-02-07 14:15:43 -08:00			`systemd.tmpfiles.rules = [`
			`"d ${cfg.state-directory} 0750 root root - -"`
			`"d ${cfg.store-directory} 0750 root root - -"`
			`];`

Missed reference to 'nextcloud' 2024-02-07 14:50:14 -08:00			`virtualisation.arion.projects.immich.settings = let`
Initial checkin 2024-02-07 14:09:35 -08:00			`image = { ... }: {`
			`project.name = "immich";`
			`services = {`
			`immich = {`
			`service = {`
			`image = cfg.images.immich;`
			`restart = "always";`
toString port 2024-02-07 14:35:08 -08:00			`ports = [ "${toString cfg.port}:3001" ];`
Initial checkin 2024-02-07 14:09:35 -08:00			`command = [ "start.sh" "immich" ];`
Fix dependencies 2024-02-07 14:56:46 -08:00			`depends_on =`
			`[ "redis" "database" "immich-ml" "immich-microservices" ];`
Initial checkin 2024-02-07 14:09:35 -08:00			`volumes = [`
			`"${cfg.store-directory}:/usr/src/app/upload"`
			`"/etc/localtime:/etc/localtime:ro"`
			`];`
Missed one 2024-02-07 15:31:03 -08:00			`env_file = [ hostSecrets.immichEnv.target-file ];`
Initial checkin 2024-02-07 14:09:35 -08:00			`};`
			`};`

			`immich-microservices = {`
			`service = {`
			`image = cfg.images.immich;`
			`restart = "always";`
			`command = [ "start.sh" "microservices" ];`
Fix dependencies 2024-02-07 14:56:46 -08:00			`depends_on = [ "redis" "database" "immich-ml" ];`
Initial checkin 2024-02-07 14:09:35 -08:00			`volumes = [`
			`"${cfg.store-directory}:/usr/src/app/upload"`
			`"/etc/localtime:/etc/localtime:ro"`
			`];`
env_files -> env_file 2024-02-07 15:28:17 -08:00			`env_file = [ hostSecrets.immichEnv.target-file ];`
Initial checkin 2024-02-07 14:09:35 -08:00			`};`
			`};`

			`immich-ml = {`
			`service = {`
			`image = cfg.images.immich-ml;`
			`restart = "always";`
			`volumes = [ "${cfg.state-directory}/model-cache:/cache" ];`
env_files -> env_file 2024-02-07 15:28:17 -08:00			`env_file = [ hostSecrets.immichEnv.target-file ];`
Initial checkin 2024-02-07 14:09:35 -08:00			`};`
			`};`

			`redis.service = {`
			`image = cfg.images.redis;`
			`restart = "always";`
			`volumes = [ "${cfg.state-directory}/redis:/var/lib/redis" ];`
			`};`

			`database = {`
			`service = {`
			`image = cfg.images.postgresql;`
			`restart = "always";`
			`volumes =`
			`[ "${cfg.state-directory}/database:/var/lib/postgresql/data" ];`
env_files -> env_file 2024-02-07 15:28:17 -08:00			`env_file = [ hostSecrets.immichEnv.target-file ];`
Initial checkin 2024-02-07 14:09:35 -08:00			`};`
			`};`
			`};`
			`};`
It's not a function call... 2024-02-07 14:30:26 -08:00			`in { imports = [ image ]; };`
Initial checkin 2024-02-07 14:09:35 -08:00			`};`
			`}`