tesla-mate-container/tesla-mate-container.nix

{ config, lib, pkgs, ... }:

with lib;
let
  cfg = config.services.teslaMateContainer;

  hostSecrets = config.fudo.secrets.host-secrets."${config.instance.hostname}";

  makeEnvFile = envVars:
    let
      envLines =
        mapAttrsToList (var: val: ''${var}="${toString val}"'') envVars;
    in pkgs.writeText "envFile" (concatStringsSep "\n" envLines);

  makeTeslaMateImage = { teslaMateImage, postgresImage, grafanaImage
    , teslaMateEnvFile, postgresEnvFile, grafanaEnvFile, teslaMateUid
    , postgresUid, grafanaUid, stateDirectory, ... }:
    { pkgs, ... }: {
      project.name = "teslamate";
      services = {
        teslamate = {
          service = {
            image = teslaMateImage;
            restart = "always";
            volumes = [ "${stateDirectory}/import:/opt/app/import" ];
            ports = [ "4000:4000" ];
            user = "${toString teslaMateUid}:${toString teslaMateUid}";
            env_file = [ teslaMateEnvFile ];
            cap_drop = "all";
          };
        };
        postgres = {
          service = {
            image = postgresImage;
            restart = "always";
            volumes = [ "${stateDirectory}/postgres:/var/lib/postgresql/data" ];
            env_file = [ postgresEnvFile ];
            user = "${toString postgresUid}:${toString postgresUid}";
          };
        };
        grafana = {
          service = {
            image = grafanaImage;
            restart = "always";
            volumes = [ "${stateDirectory}/grafana:/var/lib/grafana" ];
            env_file = [ grafanaEnvFile ];
            user = "${toString grafanaUid}:${toString grafanaUid}";
            ports = [ "3000:3000" ];
          };
        };
      };
    };
in {
  options.services.teslaMateContainer = with types; {
    enable = mkEnableOption "Enable TeslaMate in a PodMan container.";

    images = {
      tesla-mate = mkOption {
        type = str;
        description = "Docker image to use for Tesla Mate.";
        default = "teslamate/teslamate:latest";
      };
      postgres = mkOption {
        type = str;
        description = "Docker image to use for Postgres DB.";
        default = "postgres:15";
      };
      grafana = mkOption {
        type = str;
        description = "Docker image to use for Grafana.";
        default = "teslamate/grafana:latest";
      };
    };

    mqtt = {
      host = mkOption {
        type = str;
        description = "Hostname of the MQTT server.";
      };
      port = mkOption {
        type = port;
        description = "Port of the MQTT server";
        default = 1883;
      };
      user = mkOption {
        type = str;
        description = "User as which to connect to the MQTT server.";
        default = "tesla-mate";
      };
      password = mkOption {
        type = str;
        description =
          "Password with which to authenticate with the MQTT server.";
      };
    };

    state-directory = mkOption {
      type = str;
      description = "Path at which to store service state.";
    };
  };

  config = mkIf cfg.enable {
    fudo.secrets.host-secrets."${config.instance.hostname}" = let
      teslaMateDbPass = readFile
        (pkgs.lib.passwd.stablerandom-passwd-file "teslaMateDbPasswd"
          config.instance.build-seed);
      teslaMateEncryptionKey = readFile
        (pkgs.lib.passwd.stablerandom-passwd-file "teslaMateEncryptionKey"
          config.instance.build-seed);
    in {
      teslaMateEnv = {
        source-file = makeEnvFile {
          ENCRYPTION_KEY = teslaMateEncryptionKey;
          DATABASE_USER = "teslamate";
          DATABASE_PASS = teslaMateDbPass;
          DATABASE_HOST = "postgres";
          MQTT_HOST = cfg.mqtt.host;
          MQTT_PORT = cfg.mqtt.port;
          MQTT_USERNAME = cfg.mqtt.user;
          MQTT_PASSWORD = cfg.mqtt.password;
        };
        target-file = "/run/tesla-mate/tesla-mate.env";
      };
      teslaMatePostgresEnv = {
        source-file = makeEnvFile {
          POSTGRES_USER = "teslamate";
          POSTGRES_PASSWORD = teslaMateDbPass;
          POSTGRES_DB = "teslamate";
        };
        target-file = "/run/tesla-mate/postgres.env";
      };
      teslaMateGrafanaEnv = {
        source-file = makeEnvFile {
          DATABASE_USER = "teslamate";
          DATABASE_PASS = teslaMateDbPass;
          DATABASE_NAME = "teslamate";
          DATABASE_HOST = "postgres";
        };
        target-file = "/run/tesla-mate/grafana.env";
      };
    };

    users.users = {
      tesla-mate = {
        isSystemUser = true;
        group = "tesla-mate";
        uid = 720;
      };
      tesla-mate-postgres = {
        isSystemUser = true;
        group = "tesla-mate";
        uid = 721;
      };
      tesla-mate-grafana = {
        isSystemUser = true;
        group = "tesla-mate";
        uid = 722;
      };
    };

    virtualisation.arion.projects.teslamate.settings = let
      teslaMateImage = makeTeslaMateImage {
        teslaMateImage = cfg.images.tesla-mate;
        postgresImage = cfg.images.postgres;
        grafanaImage = cfg.images.grafana;
        stateDirectory = cfg.state-directory;
        teslaMateEnvFile = hostSecrets.teslaMateEnv.target-file;
        postgresEnvFile = hostSecrets.teslaMatePostgresEnv.target-file;
        grafanaEnvFile = hostSecrets.teslaMateGrafanaEnv.target-file;
        teslaMateUid = config.users.users.tesla-mate.uid;
        postgresUid = config.users.users.tesla-mate-postgres.uid;
        grafanaUid = config.users.users.tesla-mate-grafana.uid;
      };
    in { imports = [ teslaMateImage ]; };
  };
}
Initial checkin 2023-07-22 10:30:59 -07:00			`{ config, lib, pkgs, ... }:`

			`with lib;`
			`let`
canfig -> config 2023-07-22 11:03:07 -07:00			`cfg = config.services.teslaMateContainer;`
Initial checkin 2023-07-22 10:30:59 -07:00
			`hostSecrets = config.fudo.secrets.host-secrets."${config.instance.hostname}";`

			`makeEnvFile = envVars:`
			`let`
			`envLines =`
			`mapAttrsToList (var: val: ''${var}="${toString val}"'') envVars;`
			`in pkgs.writeText "envFile" (concatStringsSep "\n" envLines);`

Uhm... 2023-07-22 11:37:57 -07:00			`makeTeslaMateImage = { teslaMateImage, postgresImage, grafanaImage`
			`, teslaMateEnvFile, postgresEnvFile, grafanaEnvFile, teslaMateUid`
			`, postgresUid, grafanaUid, stateDirectory, ... }:`
Initial checkin 2023-07-22 10:30:59 -07:00			`{ pkgs, ... }: {`
			`project.name = "teslamate";`
			`services = {`
			`teslamate = {`
Oh, there's a nested 'service' attrset 2023-07-22 11:42:37 -07:00			`service = {`
			`image = teslaMateImage;`
			`restart = "always";`
			`volumes = [ "${stateDirectory}/import:/opt/app/import" ];`
			`ports = [ "4000:4000" ];`
user should be string, not list 2023-07-22 11:58:05 -07:00			`user = "${toString teslaMateUid}:${toString teslaMateUid}";`
Oh, there's a nested 'service' attrset 2023-07-22 11:42:37 -07:00			`env_file = [ teslaMateEnvFile ];`
			`cap_drop = "all";`
			`};`
Initial checkin 2023-07-22 10:30:59 -07:00			`};`
			`postgres = {`
Oh, there's a nested 'service' attrset 2023-07-22 11:42:37 -07:00			`service = {`
			`image = postgresImage;`
			`restart = "always";`
			`volumes = [ "${stateDirectory}/postgres:/var/lib/postgresql/data" ];`
			`env_file = [ postgresEnvFile ];`
user should be string, not list 2023-07-22 11:58:05 -07:00			`user = "${toString postgresUid}:${toString postgresUid}";`
Oh, there's a nested 'service' attrset 2023-07-22 11:42:37 -07:00			`};`
Initial checkin 2023-07-22 10:30:59 -07:00			`};`
			`grafana = {`
Oh, there's a nested 'service' attrset 2023-07-22 11:42:37 -07:00			`service = {`
			`image = grafanaImage;`
			`restart = "always";`
			`volumes = [ "${stateDirectory}/grafana:/var/lib/grafana" ];`
			`env_file = [ grafanaEnvFile ];`
user should be string, not list 2023-07-22 11:58:05 -07:00			`user = "${toString grafanaUid}:${toString grafanaUid}";`
Oh, there's a nested 'service' attrset 2023-07-22 11:42:37 -07:00			`ports = [ "3000:3000" ];`
			`};`
Initial checkin 2023-07-22 10:30:59 -07:00			`};`
			`};`
			`};`
			`in {`
telsa -> tesla 2023-07-22 11:04:06 -07:00			`options.services.teslaMateContainer = with types; {`
Initial checkin 2023-07-22 10:30:59 -07:00			`enable = mkEnableOption "Enable TeslaMate in a PodMan container.";`

			`images = {`
			`tesla-mate = mkOption {`
			`type = str;`
			`description = "Docker image to use for Tesla Mate.";`
			`default = "teslamate/teslamate:latest";`
			`};`
			`postgres = mkOption {`
			`type = str;`
			`description = "Docker image to use for Postgres DB.";`
			`default = "postgres:15";`
			`};`
			`grafana = mkOption {`
			`type = str;`
			`description = "Docker image to use for Grafana.";`
			`default = "teslamate/grafana:latest";`
			`};`
			`};`

			`mqtt = {`
			`host = mkOption {`
			`type = str;`
			`description = "Hostname of the MQTT server.";`
			`};`
			`port = mkOption {`
			`type = port;`
			`description = "Port of the MQTT server";`
			`default = 1883;`
			`};`
			`user = mkOption {`
			`type = str;`
			`description = "User as which to connect to the MQTT server.";`
			`default = "tesla-mate";`
			`};`
			`password = mkOption {`
			`type = str;`
			`description =`
			`"Password with which to authenticate with the MQTT server.";`
			`};`
			`};`
Add state directory option 2023-07-22 12:13:48 -07:00
			`state-directory = mkOption {`
			`type = str;`
			`description = "Path at which to store service state.";`
			`};`
Initial checkin 2023-07-22 10:30:59 -07:00			`};`

			`config = mkIf cfg.enable {`
			`fudo.secrets.host-secrets."${config.instance.hostname}" = let`
			`teslaMateDbPass = readFile`
			`(pkgs.lib.passwd.stablerandom-passwd-file "teslaMateDbPasswd"`
			`config.instance.build-seed);`
			`teslaMateEncryptionKey = readFile`
			`(pkgs.lib.passwd.stablerandom-passwd-file "teslaMateEncryptionKey"`
			`config.instance.build-seed);`
			`in {`
			`teslaMateEnv = {`
			`source-file = makeEnvFile {`
			`ENCRYPTION_KEY = teslaMateEncryptionKey;`
			`DATABASE_USER = "teslamate";`
			`DATABASE_PASS = teslaMateDbPass;`
			`DATABASE_HOST = "postgres";`
			`MQTT_HOST = cfg.mqtt.host;`
			`MQTT_PORT = cfg.mqtt.port;`
			`MQTT_USERNAME = cfg.mqtt.user;`
			`MQTT_PASSWORD = cfg.mqtt.password;`
			`};`
			`target-file = "/run/tesla-mate/tesla-mate.env";`
			`};`
			`teslaMatePostgresEnv = {`
			`source-file = makeEnvFile {`
			`POSTGRES_USER = "teslamate";`
			`POSTGRES_PASSWORD = teslaMateDbPass;`
			`POSTGRES_DB = "teslamate";`
			`};`
			`target-file = "/run/tesla-mate/postgres.env";`
			`};`
			`teslaMateGrafanaEnv = {`
			`source-file = makeEnvFile {`
			`DATABASE_USER = "teslamate";`
			`DATABASE_PASS = teslaMateDbPass;`
			`DATABASE_NAME = "teslamate";`
			`DATABASE_HOST = "postgres";`
			`};`
			`target-file = "/run/tesla-mate/grafana.env";`
			`};`
			`};`

			`users.users = {`
			`tesla-mate = {`
			`isSystemUser = true;`
			`group = "tesla-mate";`
			`uid = 720;`
			`};`
			`tesla-mate-postgres = {`
			`isSystemUser = true;`
			`group = "tesla-mate";`
			`uid = 721;`
			`};`
			`tesla-mate-grafana = {`
			`isSystemUser = true;`
			`group = "tesla-mate";`
			`uid = 722;`
			`};`
			`};`

Formatting 2023-07-22 10:38:50 -07:00			`virtualisation.arion.projects.teslamate.settings = let`
			`teslaMateImage = makeTeslaMateImage {`
			`teslaMateImage = cfg.images.tesla-mate;`
			`postgresImage = cfg.images.postgres;`
			`grafanaImage = cfg.images.grafana;`
			`stateDirectory = cfg.state-directory;`
			`teslaMateEnvFile = hostSecrets.teslaMateEnv.target-file;`
			`postgresEnvFile = hostSecrets.teslaMatePostgresEnv.target-file;`
			`grafanaEnvFile = hostSecrets.teslaMateGrafanaEnv.target-file;`
			`teslaMateUid = config.users.users.tesla-mate.uid;`
Skip teslaMate in var names 2023-07-22 11:40:20 -07:00			`postgresUid = config.users.users.tesla-mate-postgres.uid;`
			`grafanaUid = config.users.users.tesla-mate-grafana.uid;`
Initial checkin 2023-07-22 10:30:59 -07:00			`};`
Formatting 2023-07-22 10:38:50 -07:00			`in { imports = [ teslaMateImage ]; };`
Initial checkin 2023-07-22 10:30:59 -07:00			`};`
			`}`