Merge remote-tracking branch 'cd/master'

1 files changed, 67 insertions, 0 deletions

diff --git a/lass/2configs/downloading.nix b/lass/2configs/downloading.nix
new file mode 100644
index 000000000..e6d31a6c4
--- /dev/null
+++ b/lass/2configs/downloading.nix
@@ -0,0 +1,67 @@
+{ config, pkgs, ... }:
+
+{
+  imports = [
+    ../3modules/iptables.nix
+    ../3modules/folderPerms.nix
+  ];
+
+  users.extraUsers = {
+    download = {
+      name = "download";
+      home = "/var/download";
+      createHome = true;
+      extraGroups = [
+        "download"
+      ];
+    };
+
+    transmission = {
+      extraGroups = [
+        "download"
+      ];
+    };
+  };
+
+  users.extraGroups = {
+    download = {
+      members = [
+        "download"
+        "transmission"
+      ];
+    };
+  };
+
+  services.transmission = {
+    enable = true;
+    settings = {
+      download-dir = "/var/download/finished";
+      incomplete-dir = "/var/download/incoming";
+      incomplete-dir-enabled = true;
+
+      rpc-authentication-required = true;
+      rpc-whitelist-enabled = false;
+      rpc-username = "download";
+      #add rpc-password in secrets
+      rpc-password = "test123";
+    };
+  };
+
+  lass.iptables = {
+    enable = true;
+    tables.filter.INPUT.rules = [
+      { predicate = "-p tcp --dport 9091"; target = "ACCEPT"; }
+    ];
+  };
+
+  lass.folderPerms = {
+    enable = true;
+    permissions = [
+      {
+        path = "/var/download";
+        permission = "775";
+        owner = "transmission:download";
+      }
+    ];
+  };
+}