blob: 215542b67327c09e93f15dd5a9a7863d00f7e39b (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
|
{
description = "NixOS configurations development environment";
inputs.nixpkgs-stable.url = "github:NixOS/nixpkgs/25.11";
inputs.nixpkgs-unstable.url = "github:NixOS/nixpkgs/nixos-unstable";
inputs.disko.url = "github:nix-community/disko";
inputs.disko.inputs.nixpkgs.follows = "nixpkgs-stable";
inputs.nixos-facter-modules.url = "github:numtide/nixos-facter-modules";
inputs.sops-nix.url = "github:Mic92/sops-nix";
inputs.sops-nix.inputs.nixpkgs.follows = "nixpkgs-stable";
inputs.nixos-anywhere.url = "github:nix-community/nixos-anywhere";
inputs.nixos-anywhere.inputs.nixpkgs.follows = "nixpkgs-stable";
inputs.home-manager.url = "github:nix-community/home-manager";
inputs.home-manager.inputs.nixpkgs.follows = "nixpkgs-unstable";
outputs = { self, nixpkgs, nixpkgs-stable, nixos-anywhere, ... }@inputs:
let
systems = [ "x86_64-linux" "x86_64-darwin" "aarch64-linux" "aarch64-darwin" ];
forAllSystems = nixpkgs.lib.genAttrs systems;
in
{
nixosConfigurations.labsrv01 = nixpkgs.lib.nixosSystem {
system = "x86_64-linux";
specialArgs = { inherit inputs; };
modules = [
inputs.disko.nixosModules.disko
./labsrv01/configuration.nix
inputs.nixos-facter-modules.nixosModules.facter
inputs.sops-nix.nixosModules.sops
inputs.home-manager.nixosModules.home-manager
{
home-manager.useGlobalPkgs = true;
home-manager.useUserPackages = true;
home-manager.users.kjtsanaktsidis = ./labsrv01/home.nix;
home-manager.sharedModules = [
inputs.sops-nix.homeManagerModules.sops
];
}
];
};
packages = forAllSystems (system:
let
pkgs = nixpkgs-stable.legacyPackages.${system};
ruby = pkgs.ruby.withPackages (ps: [
pkgs.rubyPackages.tty-command
]);
in
{
nixos-update = pkgs.writeShellApplication {
name = "nixos-update";
runtimeInputs = [
pkgs.sops
pkgs.nixos-anywhere
pkgs.nixos-rebuild-ng
];
text = ''
exec "${ruby}/bin/ruby" "${./nixos-update.rb}" "$@"
'';
};
}
);
devShells = forAllSystems (system:
let
pkgs = nixpkgs.legacyPackages.${system};
in
{
default = pkgs.mkShell {
buildInputs = [
nixos-anywhere.packages.${system}.default
pkgs.sops
pkgs.ruby
pkgs.age
pkgs.mkpasswd
self.packages.${system}.nixos-update
];
};
}
);
formatter = forAllSystems (system: nixpkgs.legacyPackages.${system}.nixfmt-rfc-style);
apps = forAllSystems (system: {
nixos-update = {
type = "app";
program = "${self.packages.${system}.nixos-update}/bin/nixos-update";
};
});
};
}
|
