From c5364de431203671106fd7e66a27a4c1e932c1f3 Mon Sep 17 00:00:00 2001 From: Mel Date: Wed, 4 Dec 2024 04:31:55 +0100 Subject: Host bare-bones Bluesky PDS service Signed-off-by: Mel --- services/pds.nix | 60 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 60 insertions(+) create mode 100644 services/pds.nix (limited to 'services') diff --git a/services/pds.nix b/services/pds.nix new file mode 100644 index 0000000..55dc157 --- /dev/null +++ b/services/pds.nix @@ -0,0 +1,60 @@ +{ pkgs, auxiliaryPkgs, ... }: + +let + inherit (pkgs) dockerTools glibc; + inherit (auxiliaryPkgs) common; + + inherit (auxiliaryPkgs.bluesky) pds pdsadmin; + + pdsLocalPort = 16419; + pdsDir = "/srv/pds"; + + pdsImage = dockerTools.buildLayeredImage { + name = "pds"; + tag = pds.version; + fromImage = common.alpine.base; + contents = [ pds pdsadmin glibc ]; + # this convices `detect-libc`, which is used by `sharp` + # to pick the correct binary artifact, that we're using + # glibc and not musl to choose the right one. + extraCommands = '' + mkdir -p usr/bin + ln -s ${glibc.bin}/bin/ldd usr/bin/ldd + ''; + }; + +in +{ + foundation.services.pds = { + image = { imageFile = pdsImage; image = "pds:${pds.version}"; }; + ports = [ [ pdsLocalPort 3000 ] ]; + + volumes = [ + [ "${pdsDir}" "/pds" ] + ]; + + environment = { + PDS_PORT = "3000"; + PDS_HOSTNAME = "pds.rnrd.eu"; + + PDS_DATA_DIRECTORY = "/pds"; + PDS_BLOBSTORE_DISK_LOCATION = "/pds/blocks"; + PDS_BLOB_UPLOAD_LIMIT = "52428800"; + + PDS_DID_PLC_URL = "https://plc.directory"; + PDS_BSKY_APP_VIEW_URL = "https://api.bsky.app"; + PDS_BSKY_APP_VIEW_DID = "did:web:api.bsky.app"; + PDS_REPORT_SERVICE_URL = "https://mod.bsky.app"; + PDS_REPORT_SERVICE_DID = "did:plc:ar7c4by46qjdydhdevvrndac"; + PDS_CRAWLERS = "https://bsky.network"; + + LOG_ENABLED = "true"; + }; + + # TODO: use age + environmentFiles = [ /srv/pds/secret.env ]; + + workdir = "/pds"; + entrypoint = "${pds}/bin/pds"; + }; +} -- cgit 1.4.1