feat(sgx): disable Netatalk and enhance Samba configuration

- Disabled Netatalk service by setting `enable` to `false`. - Improved macOS compatibility in Samba with specific `fruit` and `vfs` options. - Added a new Time Machine share configuration for backups.
2025-07-30 13:27:03 +02:00 · 2025-07-30 13:27:03 +02:00 · 959e82bcee
commit 959e82bcee
parent ba70ee7f59
1 changed files with 30 additions and 2 deletions
--- a/systems/x86_64-linux/sgx/fileserver.nix
+++ b/systems/x86_64-linux/sgx/fileserver.nix
@ -4,7 +4,7 @@
  systemd.services.netatalk.requires = [ "mnt-backup.mount" "mnt-raid.mount" ];
  systemd.services.netatalk.after = [ "mnt-backup.mount" "mnt-raid.mount" ];
  services.netatalk = {
-    enable = true;
+    enable = false;
    settings = {
      Homes = {
        "basedir regex" = "/home";
@ -40,7 +40,7 @@
    openFirewall = true;
    settings = {
      global = {
-        security = "user";
+        "security" = "user";
        "read raw" = "Yes";
        "write raw" = "Yes";
        "socket options" = "TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=131072 SO_SNDBUF=131072";
@ -56,7 +56,35 @@
        "hosts deny" = "ALL";
        "guest account" = "nobody";
        "map to guest" = "bad user";
+        # macOS compat options
+        "wide links" = "yes";
+        "unix extensions" = "no";
+        "vfs object" = "acl_xattr catia fruit streams_xattr";
+        "fruit:nfc_aces" = "no";
+        "fruit:aapl" = "yes";
+        "fruit:model" = "MacSamba";
+        "fruit:posix_rename" = "yes";
+        "fruit:metadata" = "stream";
+        "fruit:delete_empty_adfiles" = "yes";
+        "fruit:veto_appledouble" = "no";
+        "spotlight" = "yes";
      };
+      time-machine = {
+        path = "/mnt/backup/tm_share";
+        "browseable" = "yes";
+        "read only" = "no";
+        "guest ok" = "no";
+        "create mask" = "0644";
+        "directory mask" = "0755";
+        "force user" = "harald";
+        "force group" = "users";
+        "available" = "yes";
+        "writable" = "yes";
+        "valid users" = "harald";
+        "vfs objects" = "catia fruit streams_xattr";
+        "fruit:time machine" = "yes";
+      };
+
      Qmultimedia = {
        path = "/mnt/raid/Qmultimedia";
        browseable = "yes";