Feature: Add stack.nix for wireguard.

homelab/stacks/wireguard/.env

@@ -1 +0,0 @@
-DOCKER_DATA=/home/admin/data/wireguard

homelab/stacks/wireguard/docker-compose.yml

@@ -3,17 +3,16 @@ services:
     image: weejewel/wg-easy:latest
     container_name: wireguard_wg-easy
     restart: "no"
-    env_file:
+    environment:
-      - path: ./wireguard.env
+      WG_HOST: vpn.jafner.net
-        required: true
+      WG_PORT: 53820
-      - path: ./wireguard_secrets.env
+      WG_DEFAULT_DNS: 192.168.1.1
-        required: false
     ports:
       - 53820:51820/udp
     networks:
       - web
     volumes:
-      - ${DOCKER_DATA}/wg-easy:/etc/wireguard
+      - ${APPDATA}/wireguard:/etc/wireguard
     cap_add:
       - NET_ADMIN
       - SYS_MODULE

homelab/stacks/wireguard/stack.nix

@@ -0,0 +1,21 @@
+{ sys, ... }: let stack = "wireguard"; in {
+  home-manager.users."${sys.username}".home.file = {
+    "${stack}" = {
+      enable = true;
+      recursive = true;
+      source = ./.;
+      target = "stacks/${stack}/";
+    };
+    "${stack}/.env" = {
+      enable = true;
+      text = ''APPDATA=${sys.dataDirs.appdata}'';
+      target = "stacks/${stack}/.env";
+    };
+  };
+  sops.secrets."${stack}" = { 
+    sopsFile = ./secrets.env;
+    key = "";
+    mode = "0440";
+    owner = sys.username;
+  };
+}

homelab/stacks/wireguard/wireguard.env

@@ -1,3 +0,0 @@
-WG_HOST=vpn.jafner.net
-WG_PORT=53820
-WG_DEFAULT_DNS=192.168.1.1