feat: Add crowdsec module

configuration/default.nix

@@ -18,7 +18,6 @@
     ./services/backups.nix
     ./services/battery-manager.nix
     ./services/conduit.nix
-    ./services/crowdsec.nix
     ./services/foundryvtt.nix
     ./services/gitea.nix
     ./services/metrics

configuration/services/crowdsec.nix

@@ -1,26 +0,0 @@
-{ pkgs, ... }:
-{
-  services.crowdsec = {
-    enable = true;
-
-    parserWhitelist = [
-      "1.64.239.213"
-    ];
-
-    settings.crowdsec_service.acquisition_path = pkgs.writeText "crowdsec-acquisitions.yaml" ''
-      ---
-      source: journalctl
-      journalctl_filter:
-        - "SYSLOG_IDENTIFIER=Nextcloud"
-      labels:
-        type: syslog
-      ---
-      source: journalctl
-      journalctl_filter:
-        - "SYSLOG_IDENTIFIER=sshd-service"
-      labels:
-        type: syslog
-      ---
-    '';
-  };
-}

configuration/services/metrics/victoriametrics.nix

@@ -10,7 +10,6 @@
         extraSettings.authorization.credentials_file = config.sops.secrets."forgejo/metrics-token".path;
       };
       coturn.targets = [ "127.0.0.1:9641" ];
-      crowdsec.targets = [ "127.0.0.1:6060" ];
     };
   };
 }

modules/crowdsec.nix

@@ -200,10 +200,7 @@ in
     ];
 
     environment = {
-      systemPackages = [
-        # TODO(tlater): Figure out a way to get completions to work
-        cscli
-      ];
+      systemPackages = [ cscli ];
       etc."crowdsec/config.yaml".source = settingsFormat.generate "crowdsec-settings.yaml" cfg.settings;
     };