Nix Podman Stacks
Search K

Appearance

beszel

Example

nix
{config, ...}: {
  beszel = {
    enable = true;
    ed25519PrivateKeyFile = config.sops.secrets."beszel/ssh_key".path;
    ed25519PublicKeyFile = config.sops.secrets."beszel/ssh_pub_key".path;
    oidc = {
      registerClient = true;
      clientSecretHash = "$pbkdf2-sha512$...";
    };
  };
}

Stack Options

nps.stacks.beszel.containers.beszel

Alias of {option}services.podman.containers.beszel.

Type
plaintext
submodule
Declaration
<nps/modules/beszel>

nps.stacks.beszel.containers.beszel-agent

Alias of {option}services.podman.containers.beszel-agent.

Type
plaintext
submodule
Declaration
<nps/modules/beszel>

nps.stacks.beszel.ed25519PrivateKeyFile

Path to private SSH key that will be used by the hub to authenticate against agent If not provided, the hub will generate a new key pair when starting.

Type
plaintext
null or absolute path
Default
nix
null
Declaration
<nps/modules/beszel>

nps.stacks.beszel.ed25519PublicKeyFile

Path to public SSH key of the hub that will be considered authorized by agent If not provided, the KEY environment variable should be set to the public key of the hub, in order for the connection from hub to agent to work.

Type
plaintext
null or absolute path
Default
nix
null
Declaration
<nps/modules/beszel>

nps.stacks.beszel.enable

Whether to enable beszel.

Type
plaintext
boolean
Default
nix
false
Example
nix
true
Declaration
<nps/modules/beszel>

nps.stacks.beszel.oidc.clientSecretHash

The hashed client_secret. For examples on how to generate a client secret, see

https://www.authelia.com/integration/openid-connect/frequently-asked-questions/#client-secret

Type
plaintext
string
Declaration
<nps/modules/beszel>

nps.stacks.beszel.oidc.registerClient

Whether to register a Beszel OIDC client in Authelia. If enabled you need to provide a hashed secret in the client_secret option.

To enable OIDC Login for Beszel, you will have to set it up in Beszels Web-UI. For details, see:

Type
plaintext
boolean
Default
nix
false
Declaration
<nps/modules/beszel>

nps.stacks.beszel.oidc.userGroup

Users of this group will be able to log in

Type
plaintext
string
Default
nix
"beszel_user"
Declaration
<nps/modules/beszel>

nps.stacks.beszel.settings

System configuration (optional). If provided, on each restart, systems in the database will be updated to match the systems defined in the settings. To see your current configuration, refer to settings -> YAML Config -> Export configuration

Type
plaintext
null or YAML 1.1 value
Default
nix
null
Example
nix
{
  systems = [
    {
      host = "/beszel_socket/beszel.sock";
      name = "Local";
      port = 45876;
      users = [
        "admin@example.com"
      ];
    }
  ];
}
Declaration
<nps/modules/beszel>

nps.stacks.beszel.useSocketProxy

Whether to access the Podman socket through the read-only proxy for the beszel stack. Will be enabled by default if the 'docker-socket-proxy' stack is enabled.

Type
plaintext
boolean
Default
nix
config.nps.stacks.docker-socket-proxy.enable
Declaration
<nps/modules/beszel>