1
Fork 0
satellite/hosts/nixos/lapetus/services/grafana.nix

70 lines
1.6 KiB
Nix

{ config, pkgs, ... }:
let secret = name: "$__file(${config.sops.secrets.${name}.path})";
in
{
imports = [
../../common/optional/services/nginx.nix
./prometheus.nix
];
sops.secrets.grafana_smtp_pass.sopsFile = ../secrets.yaml;
sops.secrets.grafana_discord_webhook.sopsFile = ../secrets.yaml;
# {{{ Main config
services.grafana = {
enable = true;
settings = {
server.domain = "grafana.moonythm.dev";
server.http_port = 8409;
# {{{ Smtp
smtp = rec {
enabled = true;
host = "smtp.migadu.com:465";
from_name = "Grafana";
password = secret "grafana_smtp_pass";
user = "grafana@orbit.moonythm.dev";
from_address = user;
skip_verify = true;
};
# }}}
};
# {{{ Provisoning
provision = {
enable = true;
alerting.contactPoints.settings.contactPoints = [
{ name = "email"; }
{
name = "discord";
webhook_configs = [{
send_resolved = true;
url = secret "grafana_discord_webhook";
}];
}
];
datasources.settings.datasources = [{
name = "Prometheus";
type = "prometheus";
access = "proxy";
url = "prometheus.moonythm.dev";
}];
};
# }}}
};
# }}}
# {{{ Networking & storage
services.nginx.virtualHosts.${config.services.grafana.settings.server.domain} =
config.satellite.proxy config.services.grafana.settings.server.http_port { };
environment.persistence."/persist/state".directories = [{
directory = config.services.grafana.dataDir;
user = "grafana";
group = "grafana";
}];
# }}}
}