Replace Nominatim with self-hosted Photon for Dawarich geocoding

- Add Photon OCI container on nixnuc (rtuszik/photon-docker, planet index) storing data on the /orico ZFS mirror - Open port 2322 in nixnuc's main firewall allowlist (LAN + Tailscale) - Remove services.nominatim, its nginx vhost, and www-data PostgreSQL user from nixnuc - Switch Dawarich on hetznix01 from NOMINATIM_API_HOST to PHOTON_API_HOST pointing at nixnuc.atlas-snares.ts.net:2322 - Add zfs-datasets.nix oneshot to declaratively ensure all orico datasets exist before services start Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-31 23:55:20 -04:00 · 2026-05-27 22:58:30 -04:00 · 2026-05-27 22:58:30 -04:00 · 952fd0e083
commit 952fd0e083
parent f317a10095
4 changed files with 82 additions and 32 deletions
--- a/modules/hosts/nixos/nixnuc/zfs-datasets.nix
+++ b/modules/hosts/nixos/nixnuc/zfs-datasets.nix
@ -0,0 +1,49 @@
+{ config, pkgs, ... }:
+{
+  systemd.services.zfs-create-orico-datasets = {
+    description = "Create orico ZFS datasets";
+    serviceConfig.Type = "oneshot";
+    wantedBy = [ "multi-user.target" ];
+    before = [
+      # Legacy ZFS mount units (datasets must exist before mount happens)
+      "var-lib-audiobookshelf.mount"
+      "var-lib-postgresql.mount"
+      "var-lib-postgresql-16-pg_wal.mount"
+      # NixOS services with orico state dirs
+      "forgejo.service"
+      "immich-server.service"
+      "jellyfin.service"
+      "nextcloud-setup.service"
+      "pinchflat.service"
+      "postgresql.service"
+    ]
+    # Dynamically include every OCI container's systemd service unit so new
+    # containers are automatically covered without editing this file.
+    # c.serviceName comes from virtualisation.oci-containers.containers.<name>.serviceName
+    # and resolves to e.g. "podman-photon" for a container named "photon".
+    ++ map (c: "${c.serviceName}.service") (
+      builtins.attrValues config.virtualisation.oci-containers.containers
+    );
+    after = [ "zfs-import-orico.service" ];
+    script =
+      let
+        zfs = "${pkgs.zfs}/bin/zfs";
+        datasets = [
+          "orico/audiobookshelf"
+          "orico/forgejo"
+          "orico/immich"
+          "orico/jellyfin"
+          "orico/mountain-mesh-bot-discord"
+          "orico/nextcloud"
+          "orico/photon"
+          "orico/pinchflat"
+          "orico/postgresql-data"
+          "orico/postgresql-wal-16"
+          "orico/psitransfer"
+        ];
+      in
+      builtins.concatStringsSep "\n" (
+        map (d: "${zfs} list ${d} >/dev/null 2>&1 || ${zfs} create -p ${d}") datasets
+      );
+  };
+}