fruitbasket/modules/bacula.nix

{ config, ... }:
{
  sops.secrets = {
    "bacula/password".owner = "bacula";
    "bacula/keypair".owner = "bacula";
    "bacula/masterkey".owner = "bacula";
  };
  networking.firewall.allowedTCPPorts = [ config.services.bacula-fd.port ];
  networking.firewall.allowedUDPPorts = [ config.services.bacula-fd.port ];
  services.bacula-fd = {
    enable = true;
    name = "ifsr-quitte";
    extraClientConfig = ''
      Maximum Concurrent Jobs = 20
      FDAddress = 141.30.30.169
      PKI Signatures = Yes
      PKI Encryption = Yes
      PKI Keypair = ${config.sops.secrets."bacula/keypair".path}
      PKI Master Key = ${config.sops.secrets."bacula/masterkey".path}
    '';
    extraMessagesConfig = ''
      director = abel-dir = all, !skipped, !restored
    '';
    director."abel-dir".password = "@${config.sops.secrets."bacula/password".path}";
  };
  environment.etc."bacula/bconsole.conf".text = ''
    Director {
      Name = abel-dir
      DIRport = 9101
      address = 10.144.0.11
      Password = @${config.sops.secrets."bacula/password".path}
    }
    Console {
      Name = ifsr-quitte-console
      Password = @${config.sops.secrets."bacula/password".path}
    }
  '';
}
configure bacula 2023-07-19 15:46:49 +02:00			`{ config, ... }:`
			`{`
			`sops.secrets = {`
			`"bacula/password".owner = "bacula";`
			`"bacula/keypair".owner = "bacula";`
			`"bacula/masterkey".owner = "bacula";`
			`};`
open firewall for bacula 2023-07-19 16:02:41 +02:00			`networking.firewall.allowedTCPPorts = [ config.services.bacula-fd.port ];`
			`networking.firewall.allowedUDPPorts = [ config.services.bacula-fd.port ];`
configure bacula 2023-07-19 15:46:49 +02:00			`services.bacula-fd = {`
			`enable = true;`
			`name = "ifsr-quitte";`
			`extraClientConfig = ''`
			`Maximum Concurrent Jobs = 20`
			`FDAddress = 141.30.30.169`
			`PKI Signatures = Yes`
			`PKI Encryption = Yes`
			`PKI Keypair = ${config.sops.secrets."bacula/keypair".path}`
			`PKI Master Key = ${config.sops.secrets."bacula/masterkey".path}`
			`'';`
			`extraMessagesConfig = ''`
bacula fixes 2023-07-19 15:56:07 +02:00			`director = abel-dir = all, !skipped, !restored`
configure bacula 2023-07-19 15:46:49 +02:00			`'';`
			`director."abel-dir".password = "@${config.sops.secrets."bacula/password".path}";`
			`};`
			`environment.etc."bacula/bconsole.conf".text = ''`
			`Director {`
			`Name = abel-dir`
			`DIRport = 9101`
			`address = 10.144.0.11`
bacula fixes 2023-07-19 15:56:07 +02:00			`Password = @${config.sops.secrets."bacula/password".path}`
configure bacula 2023-07-19 15:46:49 +02:00			`}`
			`Console {`
			`Name = ifsr-quitte-console`
bacula fixes 2023-07-19 15:56:07 +02:00			`Password = @${config.sops.secrets."bacula/password".path}`
configure bacula 2023-07-19 15:46:49 +02:00			`}`
			`'';`
			`}`