2021-02-03 21:44:43 +00:00
|
|
|
{ config, lib, pkgs, ... }:
|
|
|
|
|
|
|
|
with lib;
|
|
|
|
|
|
|
|
let
|
|
|
|
cfg = config.services.lnd.restOnionService;
|
|
|
|
nbLib = config.nix-bitcoin.lib;
|
|
|
|
secretsDir = config.nix-bitcoin.secretsDir;
|
2021-01-30 22:08:43 +00:00
|
|
|
runAsUser = config.nix-bitcoin.runAsUserCmd;
|
2021-02-03 21:44:43 +00:00
|
|
|
|
|
|
|
lnd = config.services.lnd;
|
|
|
|
|
|
|
|
bin = pkgs.writeScriptBin "lndconnect-rest-onion" ''
|
2021-01-30 22:08:43 +00:00
|
|
|
#!/usr/bin/env -S ${runAsUser} lnd ${pkgs.bash}/bin/bash
|
2021-02-03 21:44:43 +00:00
|
|
|
|
|
|
|
exec ${cfg.package}/bin/lndconnect \
|
|
|
|
--host=$(cat ${config.nix-bitcoin.onionAddresses.dataDir}/lnd/lnd-rest) \
|
|
|
|
--port=${toString lnd.restPort} \
|
|
|
|
--lnddir=${lnd.dataDir} \
|
|
|
|
--tlscertpath=${secretsDir}/lnd-cert "$@"
|
|
|
|
'';
|
|
|
|
in {
|
|
|
|
options.services.lnd.restOnionService = {
|
|
|
|
enable = mkOption {
|
|
|
|
default = false;
|
|
|
|
type = types.bool;
|
|
|
|
description = ''
|
|
|
|
Create an onion service for the lnd REST service.
|
|
|
|
Add a `lndconnect-rest-onion` binary (https://github.com/LN-Zap/lndconnect) to the system environment.
|
|
|
|
This binary generates QR codes or URIs for connecting applications to lnd via the REST onion service.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
package = mkOption {
|
|
|
|
type = types.package;
|
|
|
|
default = config.nix-bitcoin.pkgs.lndconnect;
|
|
|
|
description = "The package providing lndconnect binaries.";
|
|
|
|
};
|
|
|
|
};
|
|
|
|
|
|
|
|
config = mkIf cfg.enable {
|
|
|
|
services.tor = {
|
|
|
|
enable = true;
|
|
|
|
hiddenServices.lnd-rest = nbLib.mkHiddenService {
|
|
|
|
toHost = lnd.restAddress;
|
|
|
|
port = lnd.restPort;
|
|
|
|
};
|
|
|
|
};
|
|
|
|
nix-bitcoin.onionAddresses.access.lnd = [ "lnd-rest" ];
|
|
|
|
|
|
|
|
environment.systemPackages = [ bin ];
|
|
|
|
};
|
|
|
|
}
|