romm
Retro games ROM manager
Example
{config, ...}: {
nps.stacks.romm = {
enable = true;
authSecretKeyFile = config.sops.secrets."romm/auth_secret_key".path;
romLibraryPath = "${config.nps.externalStorageBaseDir}/romm/library";
db = {
userPasswordFile = config.sops.secrets."romm/db/user_password".path;
rootPasswordFile = config.sops.secrets."romm/db/root_password".path;
};
extraEnv = {
IGDB_CLIENT_ID.fromFile = config.sops.secrets."romm/igdb_client_id".path;
IGDB_CLIENT_SECRET.fromFile = config.sops.secrets."romm/igdb_client_secret".path;
};
oidc = {
enable = true;
clientSecretFile = config.sops.secrets."romm/authelia/client_secret".path;
clientSecretHash = "$pbkdf2-sha512$...";
};
};
}Stack Options
nps.stacks.romm.adminProvisioning.email
Email address for the admin user
nps.stacks.romm.adminProvisioning.enable
Whether to automatically create an admin user on the first run. If set to false, you will be prompted to create an admin user when visiting the web ui.
nps.stacks.romm.adminProvisioning.passwordFile
Path to a file containing the admin user password
nps.stacks.romm.adminProvisioning.username
Username for the admin user
nps.stacks.romm.authSecretKeyFile
Path to the file containing the random secret key.
Can be generated with openssl rand -hex 32.
nps.stacks.romm.containers.romm
Alias of {option}services.podman.containers.romm.
nps.stacks.romm.containers.romm-db
Alias of {option}services.podman.containers.romm-db.
nps.stacks.romm.db.rootPasswordFile
Path to the file containing the password for the MariaDB root user
nps.stacks.romm.db.userPasswordFile
Path to the file containing the password for the romm database user
nps.stacks.romm.enable
Whether to enable romm.
nps.stacks.romm.extraEnv
Extra environment variables to set for the container. Variables can be either set directly or sourced from a file (e.g. for secrets).
See https://docs.romm.app/latest/Getting-Started/Environment-Variables/
attribute set of (null or boolean or signed integer or string or absolute path or (submodule)){ }{
IGDB_CLIENT_SECRET = {
fromFile = "/run/secrets/igdb_client_secret";
};
UPLOAD_TIMEOUT = 900;
}nps.stacks.romm.igir.enable
Whether to install a helper program igir-romm-cleanup that can organize your ROM collection.
Will setup defaults for dat, input & output dirs based on the configured library location.
Also adds parameters to copy remaining (undetected) ROMs as well as grouping multi-disk games.
See
nps.stacks.romm.igir.package
The igir package to use.
nps.stacks.romm.oidc.adminGroup
Users of this group will be able to log in
nps.stacks.romm.oidc.clientSecretFile
The file containing the client secret for the OIDC client that will be registered in Authelia.
For examples on how to generate a client secret, see
https://www.authelia.com/integration/openid-connect/frequently-asked-questions/#client-secret
stringconfig.sops.secrets."immich/authelia/client_secret".path"nps.stacks.romm.oidc.clientSecretHash
The client secret hash. For examples on how to generate a client secret, see https://www.authelia.com/integration/openid-connect/frequently-asked-questions/#client-secret
The value can be passed in multiple ways:
- As a literal string
- As an absolute path to a file containing the hash (
toFile) - As an absolute oath to a file containing the client_secret, in which case the hash will be automatically computed (
toHash) - As
null
If left unset (null), the client secret will be read from the file specified in the clientSecretFile option and hashed automatically before being passed to the Authelia container.
null or string or (submodule)null# Literal String:
"$pbkdf2-sha512$310000$cbOAIWbfz3vCVXIPIp6d2A$J0klwULa6TvPRCU1HAfuKua/dMKTl8gbTYJz2N73ejGUu0LUGz/y3kwmJLuKuAYGg3WQOT0q9ZzVHHUvpKpgvQ"
# Client secret hash stored in a file
{ fromFile = config.sops.secrets."immich/client_secret_hash".path; }
# Client secret stored in a file: Hash will be computed dynamically
{ toHash = config.sops.secrets."immich/client_secret".path; }
# Null (default): Hash will be computed automatically based on the clientSecretFile option
# Equivalent to { toHash = cfg.oidc.clientSecretFile; }
nullnps.stacks.romm.oidc.editorGroup
Users of this group will be assigned the 'editor' role
nps.stacks.romm.oidc.enable
Whether to enable OIDC login with Authelia. This will register an OIDC client in Authelia and setup the necessary environment variables in RomM.
For details, see:
nps.stacks.romm.oidc.viewerGroup
Users of this group will assigned the 'viewer' role
nps.stacks.romm.romLibraryPath
Base path on the host where the rom library is stored.
absolute path not in the Nix store"${config.nps.storageBaseDir}/romm/library""${config.nps.externalStorageBaseDir}/romm/library"nps.stacks.romm.settings
RomM settings. Will be mounted as the config.yml.
See https://docs.romm.app/latest/Getting-Started/Configuration-File/
YAML 1.1 value{ }{
platforms = {
gc = "ngc";
psx = "ps";
};
}