torjus/nixos
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Releases Activity
This repository has been archived on 2026-03-10. You can view files and clone it. You cannot open issues or pull requests or push a commit.
Files
7c200468f82582438cc1012e2dcc0e1eb59d11f4
nixos/home/services/backup-home.nix
Torjus Håkestad 7c200468f8
All checks were successful
Run nix flake check / flake-check (push) Successful in 2m12s
Details
system: replace host detection with capabilities module 
Replace scattered osConfig.system.name comparisons with a declarative
host.capabilities module. This improves maintainability and semantic
clarity by expressing what capabilities a host has rather than checking
its name.

Changes:
- Add system/host-capabilities.nix with options for hardware, form factor,
  UI behavior, services, and backup configuration
- Configure capabilities in hosts/gunter and hosts/magicman
- Migrate 6 files to use capabilities: packages, waybar, ssh, backup-home
- Remove redundant host name check for pciutils in gunter config
- Make backup-home service conditionally enabled based on capabilities

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2026-01-31 10:16:19 +01:00

136 lines
4.3 KiB
Nix
Raw Blame History

{
pkgs,
config,
lib,
osConfig,
...
}:
let
cfg = osConfig.host.capabilities;
backupEnabled = cfg.backupRepository != null && cfg.backupPassword != null;
# Backup home script
backup-home = pkgs.writeShellApplication {
name = "backup-home";
runtimeInputs = with pkgs; [
coreutils
curl
jq
libnotify
restic
];
text = ''
echo "========== BACKUP HOME STARTING =========="
export RESTIC_PASSWORD="${cfg.backupPassword}"
export RESTIC_REPOSITORY="${cfg.backupRepository}"
SECRET_PATH="$XDG_CONFIG_HOME/sops-nix/secrets/gotify_backup_home"
if ! [ -f "$SECRET_PATH" ]; then
notify-send -u critical "Backup issue" "Secret file for gotify token does not exist"
else
GOTIFY_TOKEN=$(<"$SECRET_PATH")
if [ -z "$GOTIFY_TOKEN" ]; then
notify-send -u critical "Backup issue" "No Gotify token found"
fi
fi
# Send start notification
notify-send -e -t 3000 "Backup started" "Backup of /home/torjus started"
retval=$?
if [ $retval -ne 0 ]; then
echo "Failed to send notification"
fi
# Do the backup
echo "========== BACKUP TASK STARTING =========="
SECONDS=0
restic backup /home/torjus \
--exclude '/home/torjus/.cache' \
--exclude '/home/torjus/.local/share/Steam' \
--exclude '/home/torjus/.local/share/containers' \
--exclude '/home/torjus/.var' \
--exclude '/home/torjus/.local/share/lutris' \
--exclude '/home/torjus/.npm' \
--exclude '/home/torjus/.factorio/mods' \
--exclude '/home/torjus/.zoom' \
--exclude '/home/torjus/Games' \
--exclude '/home/torjus/nobackup' \
--exclude '/home/torjus/git/nixpkgs'
retval=$?
if [ $retval -ne 0 ]; then
notify-send -u critical "Backup failed" "Backup of /home/torjus failed"
retval=$?
if [ $retval -ne 0 ]; then
curl "https://gotify.t-juice.club/message?token=$GOTIFY_TOKEN" \
-F "title=Backup of home@${osConfig.networking.hostName} failed!" \
-F "message=Please check status of backup-home service"
fi
fi
BACKUP_DURATION="$SECONDS"
echo "========== BACKUP TASK COMPLETE =========="
# Remove old snapshots and prune
echo "========== PRUNE TASK STARTING =========="
restic forget -d 7 -w 4 -m 6 --keep-within 1d --prune
echo "========== PRUNE TASK COMPLETE =========="
# Gather statistics
echo "========== STATS TASK STARTING =========="
stats=$(restic stats --json)
stats_raw=$(restic stats --mode=raw-data --json)
raw_size=$(jq -r '.total_size' <<< "$stats_raw" \
| numfmt --to=iec --suffix=B --format="%.2f")
total_size=$(jq -r '.total_size' <<< "$stats" \
| numfmt --to=iec --suffix=B --format="%.2f")
total_files=$(jq -r '.total_file_count' <<< "$stats" \
| numfmt --to=iec)
total_snapshots=$(jq -r '.snapshots_count' <<< "$stats")
message="$total_files files\n$total_snapshots snapshots\n$raw_size ($total_size)"
echo "========== STATS TASK COMPLETE =========="
# Send completion notification
notify-send -i checkmark -e -t 10000 \
"Backup of /home/torjus completed in ''${BACKUP_DURATION}s (''${SECONDS}s total)" "$message"
retval=$?
if [ $retval -ne 0 ]; then
echo "Failed to send notification"
exit $retval
fi
echo "========== BACKUP HOME COMPLETE =========="
'';
};
in
{
sops.secrets."gotify_backup_home" = lib.mkIf backupEnabled { };
systemd.user.services.backup-home = lib.mkIf backupEnabled {
Unit = {
Description = "Backup home directory";
After = [
"network.target"
"sops-nix.service"
];
};
Service = {
Type = "oneshot";
ExecStart = "${backup-home}/bin/backup-home";
};
};
systemd.user.timers.backup-home = lib.mkIf backupEnabled {
Unit = {
Description = "Backup home directory";
After = [ "network.target" ];
};
Timer = {
OnCalendar = "*-*-* *:00:00";
Persistent = true;
};
Install = {
WantedBy = [
"timers.target"
"graphical-session.target"
];
};
};
}
Reference in New Issue View Git Blame Copy Permalink