{
  config,
  lib,
  myData,
  ...
}: let
  cfg = config.mj.services.node_exporter;
in {
  options.mj.services.node_exporter = with lib.types; {
    enable = lib.mkEnableOption "Enable node_exporter";
    extraSubnets = lib.mkOption {
      type = listOf str;
      default = [];
    };
  };

  config = lib.mkIf cfg.enable {
    services.prometheus.exporters.node = {
      enable = true;
      enabledCollectors = ["systemd" "processes"];
      port = myData.ports.exporters.node;
      user = "node_exporter";
      group = "node_exporter";
    };

    users.users.node_exporter = {
      isSystemUser = true;
      group = "node_exporter";
      uid = myData.uidgid.node_exporter;
    };

    users.groups.node_exporter = {
      gid = myData.uidgid.node_exporter;
    };

    mj.services.friendlyport.ports = [
      {
        subnets = [myData.subnets.tailscale.cidr] ++ cfg.extraSubnets;
        tcp = [myData.ports.exporters.node];
      }
    ];
  };
}