nixfiles/flake.nix

{
  inputs = {
    nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable";
    nixpkgs-krypton.url = "github:NixOS/nixpkgs/nixos-unstable";
    nixos-hardware.url = "github:NixOS/nixos-hardware/master";
    agenix = {
      url = "github:ryantm/agenix";
      inputs.nixpkgs.follows = "nixpkgs";
    };
    bij = {
      url = "git+https://git.clerie.de/clerie/bij.git";
      inputs.nixpkgs.follows = "nixpkgs";
    };
    chaosevents = {
      url = "git+https://git.clerie.de/clerie/chaosevents.git";
      #inputs.nixpkgs.follows = "nixpkgs";
    };
    fernglas = {
      url = "github:wobcom/fernglas";
      inputs.nixpkgs.follows = "nixpkgs";
    };
    fieldpoc.url = "git+https://git.clerie.de/clerie/fieldpoc.git";
    nixos-exporter = {
      url = "git+https://git.clerie.de/clerie/nixos-exporter.git";
      inputs.nixpkgs.follows = "nixpkgs";
    };
    solid-xmpp-alarm = {
      url = "git+https://git.clerie.de/clerie/solid-xmpp-alarm.git";
      inputs.nixpkgs.follows = "nixpkgs";
    };
    sops-nix = {
      url = "github:Mic92/sops-nix";
      inputs.nixpkgs.follows = "nixpkgs";
    };
    ssh-to-age = {
      url = "github:Mic92/ssh-to-age";
      inputs.nixpkgs.follows = "nixpkgs";
    };
  };
  outputs = { self, agenix, nixpkgs, nixos-hardware, chaosevents, fernglas, nixos-exporter, solid-xmpp-alarm, ssh-to-age, ... }@inputs: let
    lib = import ./lib inputs;
    helper = lib.flake-helper;
  in {
    clerie.hosts = {
      aluminium = {
        name = "aluminium";
        group = "event";
      };
      astatine = {
        name = "astatine";
        group = "event";
        modules = [
          ./users/criese-nethinks
          ./users/isa
        ];
      };
      backup-4 = { name = "backup-4"; };
      beryllium = {
        name = "beryllium";
        group = "event";
      };
      carbon = { name = "carbon"; };
      clerie-backup = { name = "clerie-backup"; };
      dn42-il-gw1 = { name = "dn42-il-gw1"; };
      dn42-il-gw5 = { name = "dn42-il-gw5"; };
      dn42-il-gw6 = { name = "dn42-il-gw6"; };
      dn42-ildix-clerie = { name = "dn42-ildix-clerie"; };
      dn42-ildix-service = { name = "dn42-ildix-service"; };
      gatekeeper = { name = "gatekeeper"; };
      hydra-1 = { name = "hydra-1"; };
      hydra-2 = { name = "hydra-2"; };
      krypton = {
        name = "krypton";
        modules = [
          nixos-hardware.nixosModules.lenovo-thinkpad-x270
        ];
      };
      mail-2 = { name = "mail-2"; };
      minecraft-2 = { name = "minecraft-2"; };
      monitoring-3 = { name = "monitoring-3"; };
      nonat = { name = "nonat"; };
      osmium = { name = "osmium"; };
      palladium = { name = "palladium"; };
      porter = { name = "porter"; };
      storage-2 = { name = "storage-2"; };
      web-2 = { name = "web-2"; };
      zinc = {
        name = "zinc";
        modules = [
          nixos-hardware.nixosModules.common-cpu-intel
        ];
      };
      # nixfiles-auto-install: add new host above
      _iso = { name = "_iso"; };
    };

    nixosConfigurations = helper.mapToNixosConfigurations self.clerie.hosts;

    colmena = {
      meta = {
        nixpkgs = import nixpkgs {
          system = "x86_64-linux";
        };
      };
    } // helper.mapToColmenaHosts self.nixosConfigurations;

    overlays = {
      clerie = import ./pkgs/overlay.nix;
      default = self.overlays.clerie;
    };

    packages = nixpkgs.lib.genAttrs [ "x86_64-linux" "aarch64-linux" ] (system: let
      pkgs = import nixpkgs {
        inherit system;
        overlays = [
          self.overlays.clerie
          (_: _: {
            inherit (agenix.packages.${system})
              agenix;
            inherit (chaosevents.packages.${system})
              chaosevents;
            inherit (ssh-to-age.packages.${system})
              ssh-to-age;
           })
        ];
      };
    in {
      inherit (pkgs)
        clerie-keys
        clerie-system-upgrade
        clerie-merge-nixfiles-update
        clerie-update-nixfiles
        clerie-sops
        clerie-sops-config
        clerie-sops-edit
        chromium-incognito
        iot-data
        nix-remove-result-links
        nixfiles-add-secret
        nixfiles-auto-install
        nixfiles-generate-backup-secrets
        nixfiles-generate-config
        nixfiles-update-ssh-host-keys
        print-afra
        ssh-gpg
        update-from-hydra
        uptimestatus;
    });

    inherit lib self;

    hydraJobs = {
      inherit (self)
        packages;
      nixosConfigurations = helper.buildHosts self.nixosConfigurations;
      iso = self.nixosConfigurations._iso.config.system.build.isoImage;
    };

    nixConfig = {
      extra-substituters = [
        "https://nix-cache.clerie.de"
      ];
      extra-trusted-public-keys = [
        "nix-cache.clerie.de:bAt1GJTS9BOTcXFWj3nURrSlcjqikCev9yDvqArMP5g="
      ];
    };
  };
}
flake: migrate deploy to flake 2022-10-02 16:49:43 +02:00			`{`
			`inputs = {`
			`nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable";`
hosts/krypton: add host 2023-06-19 19:45:28 +02:00			`nixpkgs-krypton.url = "github:NixOS/nixpkgs/nixos-unstable";`
hosts/krypton: add nixos-hardware for x270 2023-06-30 23:31:13 +02:00			`nixos-hardware.url = "github:NixOS/nixos-hardware/master";`
Introduce agenix secrets management 2023-05-01 11:37:33 +02:00			`agenix = {`
			`url = "github:ryantm/agenix";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
configuration/common: add bij to programs 2024-04-08 08:41:05 +02:00			`bij = {`
			`url = "git+https://git.clerie.de/clerie/bij.git";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
hosts/web-2: add chaosevent.clerie.de 2023-06-13 17:53:45 +02:00			`chaosevents = {`
			`url = "git+https://git.clerie.de/clerie/chaosevents.git";`
flake.nix: Rollback nixpkgs for chaosevents input because of broken python deps in newer versions 2024-04-15 19:11:07 +02:00			`#inputs.nixpkgs.follows = "nixpkgs";`
hosts/web-2: add chaosevent.clerie.de 2023-06-13 17:53:45 +02:00			`};`
hosts/dn42-ildix-service: add lookingglass 2023-05-04 14:35:30 +02:00			`fernglas = {`
			`url = "github:wobcom/fernglas";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
hosts/aluminium: add fieldpoc 2023-06-20 18:58:55 +02:00			`fieldpoc.url = "git+https://git.clerie.de/clerie/fieldpoc.git";`
modules/monitoring: add nixos-exporter 2023-01-02 19:10:33 +01:00			`nixos-exporter = {`
			`url = "git+https://git.clerie.de/clerie/nixos-exporter.git";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
hosts/monitoring-3: Use solid-xmpp-alarm 2023-02-06 13:38:16 +01:00			`solid-xmpp-alarm = {`
			`url = "git+https://git.clerie.de/clerie/solid-xmpp-alarm.git";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
pkgs/clerie-sops: Init sops 2024-04-20 23:20:14 +02:00			`sops-nix = {`
			`url = "github:Mic92/sops-nix";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
			`ssh-to-age = {`
			`url = "github:Mic92/ssh-to-age";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
flake: migrate deploy to flake 2022-10-02 16:49:43 +02:00			`};`
pkgs/clerie-sops: Init sops 2024-04-20 23:20:14 +02:00			`outputs = { self, agenix, nixpkgs, nixos-hardware, chaosevents, fernglas, nixos-exporter, solid-xmpp-alarm, ssh-to-age, ... }@inputs: let`
lib/default.nix: Refactor lib loading 2023-12-10 18:27:55 +01:00			`lib = import ./lib inputs;`
			`helper = lib.flake-helper;`
flake: add packages to flake and add hydra build jobs 2022-10-02 20:38:02 +02:00			`in {`
flake.nix: Support different system types 2023-04-16 16:37:11 +02:00			`clerie.hosts = {`
Define host groups 2023-04-21 23:03:11 +02:00			`aluminium = {`
			`name = "aluminium";`
			`group = "event";`
			`};`
flake.nix: sorted host configs 2023-05-20 17:34:02 +02:00			`astatine = {`
			`name = "astatine";`
			`group = "event";`
hosts/astatine: add user criese-nethinks 2023-10-29 20:06:30 +01:00			`modules = [`
			`./users/criese-nethinks`
users/isa: Move to users directory 2023-12-07 20:21:44 +01:00			`./users/isa`
hosts/astatine: add user criese-nethinks 2023-10-29 20:06:30 +01:00			`];`
flake.nix: sorted host configs 2023-05-20 17:34:02 +02:00			`};`
flake.nix: Support different system types 2023-04-16 16:37:11 +02:00			`backup-4 = { name = "backup-4"; };`
Define host groups 2023-04-21 23:03:11 +02:00			`beryllium = {`
			`name = "beryllium";`
			`group = "event";`
			`};`
flake.nix: Support different system types 2023-04-16 16:37:11 +02:00			`carbon = { name = "carbon"; };`
			`clerie-backup = { name = "clerie-backup"; };`
			`dn42-il-gw1 = { name = "dn42-il-gw1"; };`
			`dn42-il-gw5 = { name = "dn42-il-gw5"; };`
			`dn42-il-gw6 = { name = "dn42-il-gw6"; };`
			`dn42-ildix-clerie = { name = "dn42-ildix-clerie"; };`
flake.nix: sorted host configs 2023-05-20 17:34:02 +02:00			`dn42-ildix-service = { name = "dn42-ildix-service"; };`
flake.nix: Support different system types 2023-04-16 16:37:11 +02:00			`gatekeeper = { name = "gatekeeper"; };`
			`hydra-1 = { name = "hydra-1"; };`
			`hydra-2 = { name = "hydra-2"; };`
hosts/krypton: add nixos-hardware for x270 2023-06-30 23:31:13 +02:00			`krypton = {`
			`name = "krypton";`
			`modules = [`
			`nixos-hardware.nixosModules.lenovo-thinkpad-x270`
			`];`
			`};`
host/mail-2: add host 2023-05-20 17:13:45 +02:00			`mail-2 = { name = "mail-2"; };`
flake.nix: Support different system types 2023-04-16 16:37:11 +02:00			`minecraft-2 = { name = "minecraft-2"; };`
			`monitoring-3 = { name = "monitoring-3"; };`
			`nonat = { name = "nonat"; };`
			`osmium = { name = "osmium"; };`
			`palladium = { name = "palladium"; };`
			`porter = { name = "porter"; };`
			`storage-2 = { name = "storage-2"; };`
			`web-2 = { name = "web-2"; };`
host/zinc: enable intel optimisations 2024-02-07 17:36:30 +01:00			`zinc = {`
			`name = "zinc";`
			`modules = [`
			`nixos-hardware.nixosModules.common-cpu-intel`
			`];`
			`};`
pkgs/nixfiles: nixfiles-auto-install add entry for new host 2023-10-22 22:35:36 +02:00			`# nixfiles-auto-install: add new host above`
flake.nix: Support different system types 2023-04-16 16:37:11 +02:00			`_iso = { name = "_iso"; };`
flake: restructure host defition and add hosts to hydra 2022-10-03 15:26:15 +02:00			`};`

flake.nix: Support different system types 2023-04-16 16:37:11 +02:00			`nixosConfigurations = helper.mapToNixosConfigurations self.clerie.hosts;`

flake: migrate deploy to flake 2022-10-02 16:49:43 +02:00			`colmena = {`
			`meta = {`
flake.nix: colmena requires a nixpkgs with explicitly set system 2023-06-28 18:59:17 +02:00			`nixpkgs = import nixpkgs {`
			`system = "x86_64-linux";`
			`};`
flake: migrate deploy to flake 2022-10-02 16:49:43 +02:00			`};`
Unclutter flake 2023-03-23 16:45:30 +01:00			`} // helper.mapToColmenaHosts self.nixosConfigurations;`
flake: migrate deploy to flake 2022-10-02 16:49:43 +02:00
pkgs/overlay.nix: Refactore overlay to a flake output attribute 2023-12-08 09:06:43 +01:00			`overlays = {`
			`clerie = import ./pkgs/overlay.nix;`
			`default = self.overlays.clerie;`
			`};`

flake.nix: multi system packages 2023-10-25 18:28:37 +02:00			`packages = nixpkgs.lib.genAttrs [ "x86_64-linux" "aarch64-linux" ] (system: let`
Unclutter flake 2023-03-23 16:45:30 +01:00			`pkgs = import nixpkgs {`
flake.nix: multi system packages 2023-10-25 18:28:37 +02:00			`inherit system;`
Unclutter flake 2023-03-23 16:45:30 +01:00			`overlays = [`
pkgs/overlay.nix: Refactore overlay to a flake output attribute 2023-12-08 09:06:43 +01:00			`self.overlays.clerie`
pkgs/nixfiles: Package nixfiles utility scripts 2023-09-01 17:23:53 +02:00			`(_: _: {`
flake.nix: multi system packages 2023-10-25 18:28:37 +02:00			`inherit (agenix.packages.${system})`
pkgs/nixfiles: Package nixfiles utility scripts 2023-09-01 17:23:53 +02:00			`agenix;`
flake.nix: multi system packages 2023-10-25 18:28:37 +02:00			`inherit (chaosevents.packages.${system})`
pkgs/nixfiles: Package nixfiles utility scripts 2023-09-01 17:23:53 +02:00			`chaosevents;`
pkgs/clerie-sops: Init sops 2024-04-20 23:20:14 +02:00			`inherit (ssh-to-age.packages.${system})`
			`ssh-to-age;`
pkgs/nixfiles: Package nixfiles utility scripts 2023-09-01 17:23:53 +02:00			`})`
Unclutter flake 2023-03-23 16:45:30 +01:00			`];`
flake: migrate deploy to flake 2022-10-02 16:49:43 +02:00			`};`
Unclutter flake 2023-03-23 16:45:30 +01:00			`in {`
flake: add packages to flake and add hydra build jobs 2022-10-02 20:38:02 +02:00			`inherit (pkgs)`
users/clerie,hosts/web-2: publish new keys for clerie 2024-04-16 22:28:26 +02:00			`clerie-keys`
pkgs/nixfiles: rename nixfiles-system-upgrade to clerie-system-upgrade 2024-03-17 15:50:49 +01:00			`clerie-system-upgrade`
pkgs/clerie-update-nixfiles: Add script that merges back nixfiles updates 2024-03-19 17:31:18 +01:00			`clerie-merge-nixfiles-update`
pkgs/nixfiles: rename nixfiles-updated-inputs to clerie-update-nixfiles 2024-03-17 16:14:54 +01:00			`clerie-update-nixfiles`
pkgs/clerie-sops: Init sops 2024-04-20 23:20:14 +02:00			`clerie-sops`
			`clerie-sops-config`
pkgs/clerie-sops: Add clerie-sops-edit for working with multiline string attributes in json 2024-05-01 17:11:36 +02:00			`clerie-sops-edit`
pkgs/chromium-incognito: add package 2024-03-17 14:24:06 +01:00			`chromium-incognito`
flake: add packages to flake and add hydra build jobs 2022-10-02 20:38:02 +02:00			`iot-data`
pkgs/nix-remove-result-links: add package 2024-03-17 15:14:12 +01:00			`nix-remove-result-links`
pkgs/nixfiles: Package nixfiles utility scripts 2023-09-01 17:23:53 +02:00			`nixfiles-add-secret`
pkgs/nixfiles: move nixfiles-auto-install to pkg 2023-10-20 23:45:43 +02:00			`nixfiles-auto-install`
pkgs/nixfiles: Package nixfiles utility scripts 2023-09-01 17:23:53 +02:00			`nixfiles-generate-backup-secrets`
pkgs/nixfiles: expose nixfiles-generate-config as pkg 2023-10-20 22:57:33 +02:00			`nixfiles-generate-config`
pkgs/nixfiles: Package nixfiles utility scripts 2023-09-01 17:23:53 +02:00			`nixfiles-update-ssh-host-keys`
pkgs/print-afra: Add script for printing pdf in AfRA 2024-03-19 17:51:59 +01:00			`print-afra`
configuration/desktop: Enable GPG SSH support 2024-04-14 17:57:56 +02:00			`ssh-gpg`
pkgs/update-from-hydra: Add script that updates paths based on hydra builds 2023-09-02 21:47:45 +02:00			`update-from-hydra`
flake.nix: fix syntax 2024-03-14 20:27:20 +01:00			`uptimestatus;`
flake.nix: multi system packages 2023-10-25 18:28:37 +02:00			`});`
flake: add packages to flake and add hydra build jobs 2022-10-02 20:38:02 +02:00
lib/clerie-monitoring-ids.nix: Add functions to analyse assigned monitoring ids 2024-04-20 14:34:42 +02:00			`inherit lib self;`

flake: add packages to flake and add hydra build jobs 2022-10-02 20:38:02 +02:00			`hydraJobs = {`
flake: restructure host defition and add hosts to hydra 2022-10-03 15:26:15 +02:00			`inherit (self)`
			`packages;`
Unclutter flake 2023-03-23 16:45:30 +01:00			`nixosConfigurations = helper.buildHosts self.nixosConfigurations;`
add custom nixos install iso 2023-02-26 18:45:26 +01:00			`iso = self.nixosConfigurations._iso.config.system.build.isoImage;`
flake: add packages to flake and add hydra build jobs 2022-10-02 20:38:02 +02:00			`};`
flake.nix: add substituters hints 2023-07-01 16:59:24 +02:00
			`nixConfig = {`
			`extra-substituters = [`
			`"https://nix-cache.clerie.de"`
			`];`
			`extra-trusted-public-keys = [`
			`"nix-cache.clerie.de:bAt1GJTS9BOTcXFWj3nURrSlcjqikCev9yDvqArMP5g="`
			`];`
			`};`
flake: migrate deploy to flake 2022-10-02 16:49:43 +02:00			`};`
			`}`