Use attic from nixpkgs

nixos-configurations/default.nix

@@ -3,7 +3,6 @@
   pkgs,
   nixpkgs-nixos-stable,
   disko,
-  attic,
   sops-nix,
   ...
 }@inputs:
@@ -20,13 +19,6 @@ pkgs.lib.genAttrs configs (
     modules = [
       self.nixosModules.default
       ./${config}/default.nix
-      (
-        { ... }:
-        {
-          imports = [ "${attic}/nixos/atticd.nix" ];
-          services.atticd.useFlakeCompatOverlay = false;
-        }
-      )
       disko.nixosModules.disko
       sops-nix.nixosModules.sops
       (

nixos-configurations/lindberg-build/applications/attic.nix

@@ -14,7 +14,7 @@ in
     # generate secret with
     # nix run system#openssl rand 64 | base64 -w0
     # ATTIC_SERVER_TOKEN_HS256_SECRET_BASE64="output from openssl"
-    credentialsFile = config.sops.secrets."attic/server_token".path;
+    environmentFile = config.sops.secrets."attic/server_token".path;
 
     settings = {
       listen = "127.0.0.1:${builtins.toString atticPort}";
@@ -44,6 +44,8 @@ in
         max-size = 256 * 1024; # 256 KiB
       };
 
+      garbage-collection.default-retention-period = "6 months";
+
       database.url = "postgresql:///atticd?host=/run/postgresql";
     };
   };
@@ -51,6 +53,7 @@ in
   imports = [ ../../../defaults/webserver ];
 
   qois.postgresql.enable = true;
+
   # Note: Attic cache availability is "best effort", so no artifacts are backed up.
 
   services.postgresql = {