2024-06-17 22:00:39 +00:00
{ config , lib , pkgs , . . . }:
2022-05-04 00:10:32 +00:00
2024-05-20 05:08:58 +00:00
lib . mkIf false #< TODO: re-enable once confident of sandboxing
2022-05-04 00:10:32 +00:00
{
2023-11-08 15:32:50 +00:00
sane . persist . sys . byStore . plaintext = [
2022-07-11 00:58:16 +00:00
# TODO: mode? we only need this to save Indexer creds ==> migrate to config?
2024-02-23 15:49:54 +00:00
{ user = " r o o t " ; group = " r o o t " ; path = " / v a r / l i b / j a c k e t t " ; method = " b i n d " ; }
2022-07-11 00:58:16 +00:00
] ;
2022-05-04 00:10:32 +00:00
services . jackett . enable = true ;
2023-01-19 07:45:14 +00:00
systemd . services . jackett . after = [ " w i r e g u a r d - w g - o v p n s . s e r v i c e " ] ;
systemd . services . jackett . partOf = [ " w i r e g u a r d - w g - o v p n s . s e r v i c e " ] ;
2022-05-04 00:10:32 +00:00
systemd . services . jackett . serviceConfig = {
# run this behind the OVPN static VPN
NetworkNamespacePath = " / r u n / n e t n s / o v p n s " ;
2024-06-17 22:00:39 +00:00
ExecStartPre = [ " ${ lib . getExe pkgs . sane-scripts . ip-check } - - n o - u p n p - - e x p e c t ${ config . sane . netns . ovpns . netnsPubIpv4 } " ] ; # abort if public IP is not as expected
2024-04-18 20:01:19 +00:00
2022-05-04 00:10:32 +00:00
# patch jackett to listen on the public interfaces
# ExecStart = lib.mkForce "${pkgs.jackett}/bin/Jackett --NoUpdates --DataFolder /var/lib/jackett/.config/Jackett --ListenPublic";
} ;
2022-12-17 00:52:48 +00:00
# jackett torrent search
services . nginx . virtualHosts . " j a c k e t t . u n i n s a n e . o r g " = {
forceSSL = true ;
enableACME = true ;
# inherit kTLS;
locations . " / " = {
2024-06-17 22:00:39 +00:00
proxyPass = " h t t p : / / ${ config . sane . netns . ovpns . netnsVethIpv4 } : 9 1 1 7 " ;
2023-06-20 00:28:46 +00:00
recommendedProxySettings = true ;
2022-12-17 00:52:48 +00:00
} ;
} ;
2022-12-17 01:29:12 +00:00
2023-06-07 23:34:00 +00:00
sane . dns . zones . " u n i n s a n e . o r g " . inet . CNAME . " j a c k e t t " = " n a t i v e " ;
2022-05-04 00:10:32 +00:00
}