malpercio.dev / ezpds
An easy-to-host PDS on the ATProtocol, iPhone and MacOS. Maintain control of your keys and data, always.
1
fork

Configure Feed

Select the types of activity you want to include in your feed.

feat(MM-135): NixOS module for relay deployment #12

open opened by
malpercio.dev targeting main from malpercio/mm-135-nixos-module-for-relay-deployment

Summary#

  • Add nix/module.nix: complete NixOS module with services.ezpds.* option tree, TOML config generation via pkgs.formats.toml, configFile escape hatch for agenix/sops-nix, dedicated ezpds user/group, and hardened systemd service
  • Expose nixosModules.default in flake.nix with package injection via lib.mkDefault self.packages.${pkgs.system}.relay
  • Add just nix-check recipe (nix flake check --impure --accept-flake-config) for ongoing validation; all 18 acceptance criteria verified via nix eval smoke tests

Test Plan#

  • just nix-check exits 0
  • cargo test --workspace — 20 tests pass
  • cargo clippy --workspace -- -D warnings — clean
  • Run Phase 3 smoke tests from docs/implementation-plans/2026-03-09-MM-135/phase_03.md Tasks 1–5 (note: requires builtins.getFlake "nixpkgs" workaround documented in the file — devenv-nixpkgs fork lacks lib.nixosSystem)
  • Review human test plan at docs/test-plans/2026-03-09-MM-135.md for E2E and runtime verification steps (Linux VM required)
Labels

None yet.

assignee

None yet.

Participants 1
AT URI
at://did:web:malpercio.dev/sh.tangled.repo.pull/3mgnneivzff22
Diff #0

No differences found between the selected revisions.

History

1 round 0 comments
sign up or login to add to the discussion
malpercio.dev submitted #0
patch application failed: error: No valid patches in input (allow with "--allow-empty")
expand 0 comments