dotfiles/system/nixos/arion.nix

{ pkgs, config, secret, ... }:

{
  environment.systemPackages = [
    pkgs.arion
  ];

  virtualisation = {
    docker = {
      enable = true;
      autoPrune = {
        enable = true;
        flags = [ "--all" ];
      };
    };

    oci-containers = {
      backend = "docker";

      containers.watchtower = {
        image = "containrrr/watchtower";
        environment = {
          WATCHTOWER_POLL_INTERVAL = "21600";
          WATCHTOWER_LABEL_ENABLE = "true";
          WATCHTOWER_NOTIFICATIONS = "shoutrrr";
          WATCHTOWER_NOTIFICATIONS_HOSTNAME = config.networking.hostName;
          WATCHTOWER_NOTIFICATION_URL = secret.watchtower.ntfyUrl;
        };
        volumes = [
          "/var/run/docker.sock:/var/run/docker.sock"
          "/root/.docker/config.json:/config.json:ro"
        ];
        extraOptions = [
          "--label=com.centurylinklabs.watchtower.enable=true"
        ];
      };
    };

    arion = {
      backend = "docker";
    };
  };

  networking.firewall.interfaces."docker0".allowedTCPPorts = [ 443 ];
}
watchtower: set hostname 2023-03-13 00:13:25 +00:00			`{ pkgs, config, secret, ... }:`
Refactor sail configuration 2022-07-30 17:49:04 +00:00
			`{`
			`environment.systemPackages = [`
			`pkgs.arion`
			`];`

Docker: Setup watchtower 2022-08-04 22:40:11 +00:00			`virtualisation = {`
			`docker = {`
			`enable = true;`
Keep less data on disk 2022-12-01 21:48:43 +00:00			`autoPrune = {`
			`enable = true;`
			`flags = [ "--all" ];`
			`};`
Docker: Setup watchtower 2022-08-04 22:40:11 +00:00			`};`

			`oci-containers = {`
			`backend = "docker";`

			`containers.watchtower = {`
			`image = "containrrr/watchtower";`
			`environment = {`
watchtower: Run every 6h and update self 2023-03-13 08:50:54 +00:00			`WATCHTOWER_POLL_INTERVAL = "21600";`
Docker: Setup watchtower 2022-08-04 22:40:11 +00:00			`WATCHTOWER_LABEL_ENABLE = "true";`
watchtower: send notifcations via ntfy 2023-03-12 21:39:27 +00:00			`WATCHTOWER_NOTIFICATIONS = "shoutrrr";`
watchtower: set hostname 2023-03-13 00:13:25 +00:00			`WATCHTOWER_NOTIFICATIONS_HOSTNAME = config.networking.hostName;`
watchtower: send notifcations via ntfy 2023-03-12 21:39:27 +00:00			`WATCHTOWER_NOTIFICATION_URL = secret.watchtower.ntfyUrl;`
Docker: Setup watchtower 2022-08-04 22:40:11 +00:00			`};`
nvim: Improve search count statusline condition 2022-08-17 21:18:53 +00:00			`volumes = [`
			`"/var/run/docker.sock:/var/run/docker.sock"`
			`"/root/.docker/config.json:/config.json:ro"`
			`];`
watchtower: Run every 6h and update self 2023-03-13 08:50:54 +00:00			`extraOptions = [`
watchtower: Run every 6h and update self 2023-03-13 08:53:59 +00:00			`"--label=com.centurylinklabs.watchtower.enable=true"`
watchtower: Run every 6h and update self 2023-03-13 08:50:54 +00:00			`];`
Docker: Setup watchtower 2022-08-04 22:40:11 +00:00			`};`
			`};`
Enable local arion deployments 2022-07-30 18:27:33 +00:00
Docker: Setup watchtower 2022-08-04 22:40:11 +00:00			`arion = {`
			`backend = "docker";`
			`};`
Enable local arion deployments 2022-07-30 18:27:33 +00:00			`};`
watchtower: FW rules 2023-03-13 09:41:35 +00:00
			`networking.firewall.interfaces."docker0".allowedTCPPorts = [ 443 ];`
Refactor sail configuration 2022-07-30 17:49:04 +00:00			`}`