mirror of
https://git.sr.ht/~magic_rb/dotfiles
synced 2024-11-25 17:46:14 +01:00
83 lines
1.6 KiB
HCL
83 lines
1.6 KiB
HCL
variable "flake_ref" {
|
|
type = string
|
|
}
|
|
|
|
variable "flake_sha" {
|
|
type = string
|
|
}
|
|
|
|
job "matrix-prometheus" {
|
|
datacenters = [ "homelab-1" ]
|
|
type = "service"
|
|
|
|
group "matrix-prometheus" {
|
|
count = 1
|
|
|
|
restart {
|
|
attempts = 5
|
|
delay = "5s"
|
|
}
|
|
|
|
network {
|
|
mode = "bridge"
|
|
}
|
|
|
|
service {
|
|
name = "matrix-prometheus"
|
|
port = "0"
|
|
}
|
|
|
|
task "matrix-prometheus" {
|
|
driver = "docker"
|
|
|
|
config {
|
|
nix_flake_ref = "${var.flake_ref}#nixngConfigurations.matrixPrometheus.config.system.build.toplevel"
|
|
nix_flake_sha = var.flake_sha
|
|
entrypoint = [ "init" ]
|
|
}
|
|
}
|
|
|
|
task "matrix-prometheus-connect-nginx" {
|
|
driver = "docker"
|
|
|
|
config {
|
|
nix_flake_ref = "${var.flake_ref}#nixngConfigurations.matrixPrometheusConnectNginx.config.system.build.toplevel"
|
|
nix_flake_sha = var.flake_sha
|
|
entrypoint = [ "init" ]
|
|
|
|
template {
|
|
data = <<EOF
|
|
upstream matrix-synapse-metrics {
|
|
{{- range connect "matrix-synapse-metrics" }}
|
|
proxy_pass {{ .Address }}:{{ .Port }}
|
|
{{- end -}}
|
|
}
|
|
EOF
|
|
destination = "/local/upsteams.conf"
|
|
}
|
|
|
|
template {
|
|
data = <<EOF
|
|
{{ range caRoots }}{{ .RootCertPEM }}{{ end }}
|
|
EOF
|
|
destination = "/secrets/ca.pem"
|
|
}
|
|
|
|
template {
|
|
data = <<EOF
|
|
{{ with caLeaf "nginx" }}{{ .CertPEM }}{{ end }}
|
|
EOF
|
|
destination = "/secrets/crt.pem"
|
|
}
|
|
|
|
template {
|
|
data = <<EOF
|
|
{{ with caLeaf "nginx" }}{{.PrivateKeyPEM }}{{ end }}
|
|
EOF
|
|
destination = "/secrets/key.pem"
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|