switch to deploy
This commit is contained in:
parent
1d06352181
commit
05928785b0
4 changed files with 274 additions and 135 deletions
86
flake.nix
86
flake.nix
|
|
@ -2,21 +2,17 @@
|
|||
description = "jana's server infrastructure";
|
||||
inputs = {
|
||||
nixpkgs.url = "github:NixOS/nixpkgs";
|
||||
colmena.url = "github:zhaofengli/colmena";
|
||||
flake-utils.url = "github:numtide/flake-utils";
|
||||
sops-nix.url = "github:Mic92/sops-nix";
|
||||
vpn-confinement.url = "github:Maroka-chan/VPN-Confinement";
|
||||
home-manager = {
|
||||
url = "github:nix-community/home-manager";
|
||||
inputs.nixpkgs.follows = "nixpkgs";
|
||||
};
|
||||
firefox-addons = {
|
||||
url = "gitlab:rycee/nur-expressions?dir=pkgs/firefox-addons";
|
||||
inputs.nixpkgs.follows = "nixpkgs";
|
||||
};
|
||||
|
||||
# deployment
|
||||
colmena.url = "github:zhaofengli/colmena";
|
||||
deploy-rs.url = "github:serokell/deploy-rs";
|
||||
|
||||
# websites
|
||||
|
||||
homepage.url = "github:jdonszelmann/homepage";
|
||||
totpal.url = "github:jdonszelmann/totpal";
|
||||
harmonica.url = "git+ssh://git@github.com/jdonszelmann/harmonica-tabs";
|
||||
|
|
@ -25,32 +21,32 @@
|
|||
compiler-construction-2021.url = "git+ssh://forgejo@git.donsz.nl/jana/eelco-visser-compiler-construction.git";
|
||||
mifg.url = "git+ssh://forgejo@git.donsz.nl/jana/money.is.fckn.gay.git";
|
||||
|
||||
# server
|
||||
raw-data.url = "git+ssh://forgejo@git.donsz.nl/jana/raw-data.git";
|
||||
secrets.url = "git+ssh://forgejo@git.donsz.nl/jana/server-secrets.git";
|
||||
sops-nix.url = "github:Mic92/sops-nix";
|
||||
vpn-confinement.url = "github:Maroka-chan/VPN-Confinement";
|
||||
|
||||
# home
|
||||
nixvim = {
|
||||
url = "github:nix-community/nixvim";
|
||||
inputs.nixpkgs.follows = "nixpkgs";
|
||||
};
|
||||
|
||||
t.url = "github:jdonszelmann/t-rs";
|
||||
dumpasm.url = "github:jdonszelmann/dumpasm";
|
||||
|
||||
kitty-search = {
|
||||
url = "github:trygveaa/kitty-kitten-search";
|
||||
flake = false;
|
||||
};
|
||||
|
||||
jujutsu = {
|
||||
url = "github:martinvonz/jj";
|
||||
inputs.nixpkgs.follows = "nixpkgs";
|
||||
};
|
||||
|
||||
p1n3appl3 = {
|
||||
url = "github:p1n3appl3/config";
|
||||
inputs.rahul-config.follows = "rahul-config";
|
||||
};
|
||||
rahul-config.url = "github:jdonszelmann/nix-config";
|
||||
|
||||
niri-unstable.url = "github:YaLTeR/niri";
|
||||
niri = {
|
||||
url = "github:sodiboo/niri-flake";
|
||||
|
|
@ -65,11 +61,15 @@
|
|||
inputs.nixpkgs.follows = "nixpkgs";
|
||||
};
|
||||
pipethon.url = "git+ssh://forgejo@git.donsz.nl/jana/pipethon.git";
|
||||
firefox-addons = {
|
||||
url = "gitlab:rycee/nur-expressions?dir=pkgs/firefox-addons";
|
||||
inputs.nixpkgs.follows = "nixpkgs";
|
||||
};
|
||||
firefox-sidebar-css = {
|
||||
url = "github:drannex/FirefoxSidebar";
|
||||
flake = false;
|
||||
};
|
||||
raw-data.url = "git+ssh://forgejo@git.donsz.nl/jana/raw-data.git";
|
||||
|
||||
};
|
||||
outputs =
|
||||
{
|
||||
|
|
@ -80,6 +80,7 @@
|
|||
sops-nix,
|
||||
vpn-confinement,
|
||||
home-manager,
|
||||
deploy-rs,
|
||||
...
|
||||
}@inputs:
|
||||
let
|
||||
|
|
@ -95,8 +96,62 @@
|
|||
})
|
||||
];
|
||||
};
|
||||
|
||||
specialArgsForSystem = system: {
|
||||
pkgs = pkgsForSystem system;
|
||||
flakes = inputs;
|
||||
inherit inputs;
|
||||
inherit (inputs.secrets.packages.${system}) secrets;
|
||||
};
|
||||
in
|
||||
{
|
||||
nixosConfigurations.fili = nixpkgs.lib.nixosSystem rec {
|
||||
system = "x86_64-linux";
|
||||
modules = [
|
||||
inputs.home-manager.nixosModules.default
|
||||
{ home-manager.extraSpecialArgs = specialArgs; }
|
||||
|
||||
./hosts/fili/configuration.nix
|
||||
./users
|
||||
./default-machine-config.nix
|
||||
|
||||
sops-nix.nixosModules.sops
|
||||
vpn-confinement.nixosModules.default
|
||||
];
|
||||
specialArgs = specialArgsForSystem system;
|
||||
};
|
||||
nixosConfigurations.kili = nixpkgs.lib.nixosSystem rec {
|
||||
system = "x86_64-linux";
|
||||
modules = [
|
||||
inputs.home-manager.nixosModules.default
|
||||
{ home-manager.extraSpecialArgs = specialArgs; }
|
||||
|
||||
./hosts/kili/configuration.nix
|
||||
./users
|
||||
];
|
||||
specialArgs = specialArgsForSystem system;
|
||||
};
|
||||
|
||||
deploy.nodes.fili = {
|
||||
hostname = "fili";
|
||||
fastConnection = true;
|
||||
profiles.system = {
|
||||
user = "root";
|
||||
path = deploy-rs.lib.x86_64-linux.activate.nixos self.nixosConfigurations.fili;
|
||||
sshUser = "jana";
|
||||
};
|
||||
};
|
||||
|
||||
deploy.nodes.kili = {
|
||||
hostname = "localhost";
|
||||
fastConnection = true;
|
||||
profiles.system = {
|
||||
user = "root";
|
||||
path = deploy-rs.lib.x86_64-linux.activate.nixos self.nixosConfigurations.kili;
|
||||
sshUser = "jana";
|
||||
};
|
||||
};
|
||||
|
||||
colmenaHive = colmena.lib.makeHive self.outputs.colmena;
|
||||
|
||||
colmena = {
|
||||
|
|
@ -166,10 +221,11 @@
|
|||
(pkgs.writeShellScriptBin "apply-local" ''
|
||||
colmena apply-local --sudo
|
||||
'')
|
||||
deploy-rs.packages.${system}.deploy-rs
|
||||
];
|
||||
shellHook = "exec $NIX_BUILD_SHELL";
|
||||
};
|
||||
packages = custom pkgs;
|
||||
custom-packages = custom pkgs;
|
||||
formatter = pkgs.nixfmt;
|
||||
}
|
||||
);
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue