alloy: Enable endpoints conditionally based on requirements

hosts/srv-monitor/default.nix

@@ -79,9 +79,9 @@
         alloy = {
           enable = true;
           domain = "alloy-${config.networking.hostName}.${tailscaleDomain}";
-          collect = {
+          collect.metrics = {
-            hostMetrics = true;
+            system = true;
-            victorialogsMetrics = true;
+            victorialogs = true;
           };
         };
 

hosts/srv-private/default.nix

@@ -56,7 +56,7 @@
         alloy = {
           enable = true;
           domain = "alloy-${config.networking.hostName}.${tailscaleDomain}";
-          collect.hostMetrics = true;
+          collect.metrics.system = true;
         };
 
         caddy.virtualHosts =

hosts/srv-public/default.nix

@@ -78,8 +78,8 @@
           enable = true;
           domain = "alloy-${config.networking.hostName}.${config.custom.services.tailscale.domain}";
           collect = {
-            hostMetrics = true;
+            metrics.system = true;
-            sshdLogs = true;
+            logs.sshd = true;
           };
         };
 

modules/system/services/alloy.nix

@@ -22,20 +22,22 @@ in
       default = "https://logs.${config.custom.services.tailscale.domain}/insert/loki/api/v1/push";
     };
     collect = {
-      hostMetrics = lib.mkEnableOption "";
+      metrics = {
-      victorialogsMetrics = lib.mkEnableOption "";
+        system = lib.mkEnableOption "";
-      sshdLogs = lib.mkEnableOption "";
+        victorialogs = lib.mkEnableOption "";
+      };
+      logs.sshd = lib.mkEnableOption "";
     };
   };
 
   config = lib.mkIf cfg.enable {
     assertions = [
       {
-        assertion = cfg.collect.victorialogsMetrics -> config.services.victorialogs.enable;
+        assertion = cfg.collect.metrics.victorialogs -> config.services.victorialogs.enable;
         message = "Collecting VictoriaLogs metrics requires the VictoriaLogs service to be enabled.";
       }
       {
-        assertion = cfg.collect.sshdLogs -> config.services.openssh.enable;
+        assertion = cfg.collect.logs.sshd -> config.services.openssh.enable;
         message = "Collecting OpenSSH logs requires the OpenSSH service to be enabled.";
       }
     ];
@@ -53,22 +55,34 @@ in
       ];
     };
 
-    environment.etc = {
+    environment.etc =
-      "alloy/endpoints.alloy".text = ''
+      let
+        isTrue = x: x;
+        anyIsTrue = attrs: attrs |> lib.attrValues |> lib.any isTrue;
+      in
+      {
+        "alloy/metrics-endpoint.alloy" = {
+          enable = cfg.collect.metrics |> anyIsTrue;
+          text = ''
             prometheus.remote_write "default" {
               endpoint {
                 url = "${cfg.metricsEndpoint}"
               }
             }
-
+          '';
+        };
+        "alloy/logs-endpoint.alloy" = {
+          enable = cfg.collect.logs |> anyIsTrue;
+          text = ''
             loki.write "default" {
               endpoint {
                 url = "${cfg.logsEndpoint}"
               }
             }
           '';
-
+        };
-      "alloy/host-metrics.alloy" = lib.mkIf cfg.collect.hostMetrics {
+        "alloy/system-metrics.alloy" = {
+          enable = cfg.collect.metrics.system;
           text = ''
             prometheus.exporter.unix "default" {
               enable_collectors = ["systemd"]
@@ -81,8 +95,8 @@ in
             }
           '';
         };
-
+        "alloy/victorialogs-metrics.alloy" = {
-      "alloy/victorialogs-metrics.alloy" = lib.mkIf cfg.collect.victorialogsMetrics {
+          enable = cfg.collect.metrics.victorialogs;
           text = ''
             prometheus.scrape "victorialogs" {
               targets = [{
@@ -95,8 +109,8 @@ in
             }
           '';
         };
-
+        "alloy/sshd-logs.alloy" = {
-      "alloy/sshd-logs.alloy" = lib.mkIf cfg.collect.sshdLogs {
+          enable = cfg.collect.logs.sshd;
           text = ''
             loki.source.journal "sshd" {
               matches    = "_SYSTEMD_UNIT=sshd.service"