fruitbasket/modules/minecraft/default.nix

{ pkgs, config, lib, ... }:
{
  nixpkgs.config.allowUnfreePredicate = pkg: builtins.elem (lib.getName pkg) [
    "minecraft-server"
  ];
  services.minecraft-servers = {
    enable = true;
    eula = true;
    servers.ifsr = {
      enable = true;
      package = pkgs.fabricServers.fabric-1_21;
      jvmOpts = "-Xmx8192M -Xms8192M";
    };
  };
  services.bluemap = {
    enable = true;
    host = "map.mc.ifsr.de";
    eula = true;
    onCalendar = "hourly";
    defaultWorld = "/srv/minecraft/ifsr/world";
  };
  services.nginx.virtualHosts."map.mc.ifsr.de".extraConfig = ''
    allow 141.30.0.0/16;
    allow 141.76.0.0/16;
    allow 217.160.244.15/32; # jonas uptime kuma
    deny all;
  '';

  networking.firewall = {
    extraInputRules = ''
      ip saddr { 141.30.0.0/16, 141.76.0.0/16, 217.160.244.15/32 } tcp dport 25565 accept comment "Allow minecraft access from TU network and jonas monitoring"
    '';
  };
  users.users.minecraft = {
    isNormalUser = true;
    isSystemUser = lib.mkForce false;
    openssh.authorizedKeys.keys = [
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILkxTuzjS3EswMfj+wSKu9ciRyStvjDlDUXzkqEUGDaP rouven@thinkpad"
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOhdjiPvtAo/ZV36RjBBPSlixzeP3VN6cqa4YAmM5uXM ff00005@ff00005-laptop" # malte
    ];
  };
  security.sudo.extraRules = [
    {
      users = [ "minecraft" ];
      commands = [
        { command = "/run/current-system/sw/bin/systemctl restart minecraft-server-ifsr"; options = [ "NOPASSWD" ]; }
        { command = "/run/current-system/sw/bin/systemctl start minecraft-server-ifsr"; options = [ "NOPASSWD" ]; }
        { command = "/run/current-system/sw/bin/systemctl stop minecraft-server-ifsr"; options = [ "NOPASSWD" ]; }
      ];
    }
  ];
}
minecraft: switch to fabric 2024-08-26 13:53:44 +02:00			`{ pkgs, config, lib, ... }:`
minecraft-server: init 2024-07-22 13:26:53 +02:00			`{`
minecraft: switch to fabric 2024-08-26 13:53:44 +02:00			`nixpkgs.config.allowUnfreePredicate = pkg: builtins.elem (lib.getName pkg) [`
			`"minecraft-server"`
			`];`
			`services.minecraft-servers = {`
minecraft-server: init 2024-07-22 13:26:53 +02:00			`enable = true;`
			`eula = true;`
minecraft: switch to fabric 2024-08-26 13:53:44 +02:00			`servers.ifsr = {`
			`enable = true;`
			`package = pkgs.fabricServers.fabric-1_21;`
			`jvmOpts = "-Xmx8192M -Xms8192M";`
			`};`
minecraft-server: init 2024-07-22 13:26:53 +02:00			`};`
minecraft: fix server and init bluemap 2024-07-22 18:05:26 +02:00			`services.bluemap = {`
			`enable = true;`
			`host = "map.mc.ifsr.de";`
			`eula = true;`
bluemap: render hourly 2024-07-22 18:09:36 +02:00			`onCalendar = "hourly";`
minecraft: switch to fabric 2024-08-26 13:53:44 +02:00			`defaultWorld = "/srv/minecraft/ifsr/world";`
minecraft: fix server and init bluemap 2024-07-22 18:05:26 +02:00			`};`
			`services.nginx.virtualHosts."map.mc.ifsr.de".extraConfig = ''`
			`allow 141.30.0.0/16;`
			`allow 141.76.0.0/16;`
minecraft: allow monitoring ip 2024-08-29 07:59:46 +02:00			`allow 217.160.244.15/32; # jonas uptime kuma`
minecraft: fix server and init bluemap 2024-07-22 18:05:26 +02:00			`deny all;`
			`'';`
minecraft-server: init 2024-07-22 13:26:53 +02:00
			`networking.firewall = {`
			`extraInputRules = ''`
minecraft: allow monitoring ip 2024-08-29 07:59:46 +02:00			`ip saddr { 141.30.0.0/16, 141.76.0.0/16, 217.160.244.15/32 } tcp dport 25565 accept comment "Allow minecraft access from TU network and jonas monitoring"`
minecraft-server: init 2024-07-22 13:26:53 +02:00			`'';`
			`};`
minecraft: fix server and init bluemap 2024-07-22 18:05:26 +02:00			`users.users.minecraft = {`
			`isNormalUser = true;`
			`isSystemUser = lib.mkForce false;`
			`openssh.authorizedKeys.keys = [`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILkxTuzjS3EswMfj+wSKu9ciRyStvjDlDUXzkqEUGDaP rouven@thinkpad"`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOhdjiPvtAo/ZV36RjBBPSlixzeP3VN6cqa4YAmM5uXM ff00005@ff00005-laptop" # malte`
			`];`
			`};`
			`security.sudo.extraRules = [`
			`{`
			`users = [ "minecraft" ];`
			`commands = [`
minecraft: switch to fabric 2024-08-26 13:53:44 +02:00			`{ command = "/run/current-system/sw/bin/systemctl restart minecraft-server-ifsr"; options = [ "NOPASSWD" ]; }`
			`{ command = "/run/current-system/sw/bin/systemctl start minecraft-server-ifsr"; options = [ "NOPASSWD" ]; }`
			`{ command = "/run/current-system/sw/bin/systemctl stop minecraft-server-ifsr"; options = [ "NOPASSWD" ]; }`
minecraft: fix server and init bluemap 2024-07-22 18:05:26 +02:00			`];`
			`}`
			`];`
minecraft-server: init 2024-07-22 13:26:53 +02:00			`}`