mirror of
https://github.com/genebean/dots.git
synced 2026-03-27 17:37:43 -04:00
Gene Liverman
c10c155b79
This sets up the container to run as the jellyfin user and to download to the folder where I store things from YouTube for Jellyfin already.
39 lines
996 B
Nix
39 lines
996 B
Nix
{ config, ... }: let
|
|
volume_base = "/orico/pinchflat";
|
|
jellyfin_youtube = "/orico/jellyfin/data/YouTube";
|
|
container_user = "jellyfin";
|
|
uid = "990";
|
|
gid = "989";
|
|
in {
|
|
virtualisation.oci-containers.containers = {
|
|
"pinchflat" = {
|
|
autoStart = true;
|
|
environmentFiles = [
|
|
"${volume_base}/.env"
|
|
];
|
|
extraOptions = [
|
|
"--security-opt"
|
|
"label=disable"
|
|
"--userns=keep-id"
|
|
];
|
|
image = "ghcr.io/kieraneglin/pinchflat:latest";
|
|
ports = [
|
|
"8945:8945"
|
|
];
|
|
user = "${uid}:${gid}"; # observed UID:GID of jellyfin user
|
|
volumes = [
|
|
"${volume_base}/config:/config"
|
|
"${jellyfin_youtube}:/downloads"
|
|
];
|
|
};
|
|
};
|
|
|
|
services.restic.backups.daily.paths = [ volume_base ];
|
|
|
|
sops.secrets.pinchflat_dot_env = {
|
|
owner = "${container_user}";
|
|
path = "${volume_base}/.env";
|
|
restartUnits = [ "${config.virtualisation.oci-containers.containers.pinchflat.serviceName}" ];
|
|
};
|
|
}
|
|
|