module.nix uses tmpfiles.rules over ExecStartPre

2026-04-10 03:37:34 +01:00 · 2026-04-10 03:37:34 +01:00 · e445f8631b
commit e445f8631b
parent 3ad9eec2f4
1 changed files with 6 additions and 5 deletions
--- a/module.nix
+++ b/module.nix
@ -317,14 +317,9 @@ in
        };
        serviceConfig = {
          Type = "simple";
-          ExecStartPre = "+${pkgs.writeShellScript "guestbook-prepare" ''
-            mkdir -p ${cfg.dataDir}/entries ${cfg.dataDir}/drawings ${cfg.dataDir}/voice_notes
-            chown -R ${cfg.user}:${cfg.group} ${cfg.dataDir}
-          ''}";
          Restart = "on-failure";
          User = cfg.user;
          Group = cfg.group;
-          ReadWritePaths = [ cfg.dataDir ];
        };
        script = ''
          ${lib.optionalString cfg.features.telegram.enable ''
@ -334,6 +329,12 @@ in
        '';
      };

+      systemd.tmpfiles.rules = [
+        "d ${cfg.dataDir}/entries 0755 ${cfg.user} ${cfg.group} -"
+        "d ${cfg.dataDir}/drawings 0755 ${cfg.user} ${cfg.group} -"
+        "d ${cfg.dataDir}/voice_notes 0755 ${cfg.user} ${cfg.group} -"
+      ];
+
      users.users.${cfg.user} = {
        isSystemUser = true;
        group = cfg.group;