infra/flake.nix

{
  description = "NixOS configuration of our builders";

  nixConfig.extra-substituters = [
    "https://nix-community.cachix.org"
    "https://nixpkgs-update.cachix.org"
  ];
  nixConfig.extra-trusted-public-keys = [
    "nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs="
    "nixpkgs-update.cachix.org-1:6y6Z2JdoL3APdu6/+Iy8eZX2ajf09e4EE9SnxSML1W8="
  ];

  inputs = {
    nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable-small";
    flake-parts.url = "github:hercules-ci/flake-parts";
    flake-parts.inputs.nixpkgs-lib.follows = "nixpkgs";
    sops-nix.url = "github:Mic92/sops-nix";
    sops-nix.inputs.nixpkgs.follows = "nixpkgs";
    sops-nix.inputs.nixpkgs-stable.follows = "";
    srvos.url = "github:numtide/srvos";
    # actually not used when using the modules but than nothing ever will try to fetch this nixpkgs variant
    srvos.inputs.nixpkgs.follows = "nixpkgs";

    nixpkgs-update.url = "github:ryantm/nixpkgs-update";
    nixpkgs-update.inputs.mmdoc.follows = "";
    nixpkgs-update-github-releases.url = "github:ryantm/nixpkgs-update-github-releases";
    nixpkgs-update-github-releases.flake = false;

    nur-update.url = "github:nix-community/nur-update";
    nur-update.inputs.nixpkgs.follows = "nixpkgs";

    disko.url = "github:nix-community/disko";
    disko.inputs.nixpkgs.follows = "nixpkgs";

    hercules-ci-effects.url = "github:hercules-ci/hercules-ci-effects";
    hercules-ci-effects.inputs.flake-parts.follows = "flake-parts";
    hercules-ci-effects.inputs.hercules-ci-agent.follows = "";
    hercules-ci-effects.inputs.nixpkgs.follows = "nixpkgs";

    treefmt-nix.url = "github:numtide/treefmt-nix";
    treefmt-nix.inputs.nixpkgs.follows = "nixpkgs";
  };

  outputs = inputs @ { flake-parts, self, ... }:
    flake-parts.lib.mkFlake
      { inherit inputs; }
      {
        systems = [ "x86_64-linux" "aarch64-linux" "x86_64-darwin" "aarch64-darwin" ];

        herculesCI = { lib, ... }: {
          ciSystems = [ "x86_64-linux" "aarch64-linux" ];

          onPush.default.outputs = {
            checks = lib.mkForce self.outputs.checks.x86_64-linux;
          };
        };

        hercules-ci.flake-update = {
          enable = true;
          createPullRequest = true;
          autoMergeMethod = "rebase";
          when = {
            hour = [ 2 ];
            dayOfWeek = [ "Mon" "Fri" ];
          };
        };

        imports = [
          inputs.hercules-ci-effects.flakeModule
          inputs.treefmt-nix.flakeModule
          ./effect.nix
          ./shell.nix
        ];

        hercules-ci.github-pages.branch = "master";

        perSystem = { config, pkgs, ... }: {
          treefmt.imports = [ ./treefmt.nix ];

          packages.pages = pkgs.runCommand "pages"
            {
              buildInputs = [ pkgs.python3.pkgs.mkdocs-material ];
            } ''
            cp -r ${pkgs.lib.cleanSource ./.}/* .
            mkdocs build --strict --site-dir $out
          '';

          hercules-ci.github-pages.settings.contents = config.packages.pages;
        };

        flake.nixosConfigurations =
          let
            inherit (inputs.nixpkgs.lib) nixosSystem;
            common = [
              { _module.args.inputs = inputs; }
              { srvos.flake = inputs.self; }
              inputs.sops-nix.nixosModules.sops
              inputs.srvos.nixosModules.server

              inputs.srvos.nixosModules.mixins-telegraf
              { networking.firewall.allowedTCPPorts = [ 9273 ]; }
            ];
          in
          {
            build01 = nixosSystem {
              system = "x86_64-linux";
              modules =
                common
                ++ [
                  ./build01/configuration.nix
                  inputs.srvos.nixosModules.hardware-hetzner-online-amd
                ];
            };

            build02 = nixosSystem {
              system = "x86_64-linux";
              modules =
                common
                ++ [
                  ./build02/configuration.nix
                  inputs.srvos.nixosModules.mixins-nginx
                  inputs.srvos.nixosModules.hardware-hetzner-online-amd
                ];
            };

            build03 = nixosSystem {
              system = "x86_64-linux";
              modules =
                common
                ++ [
                  ./build03/configuration.nix
                  inputs.srvos.nixosModules.mixins-nginx
                  inputs.srvos.nixosModules.hardware-hetzner-online-amd
                ];
            };

            build04 = nixosSystem {
              system = "aarch64-linux";
              modules =
                common
                ++ [
                  ./build04/configuration.nix
                  inputs.disko.nixosModules.disko
                ];
            };
          };
      };
}
switch to flake 2022-04-10 20:57:52 +02:00			`{`
			`description = "NixOS configuration of our builders";`

export binary caches via flake 2022-04-18 07:42:44 +02:00			`nixConfig.extra-substituters = [`
			`"https://nix-community.cachix.org"`
			`"https://nixpkgs-update.cachix.org"`
			`];`
			`nixConfig.extra-trusted-public-keys = [`
			`"nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs="`
			`"nixpkgs-update.cachix.org-1:6y6Z2JdoL3APdu6/+Iy8eZX2ajf09e4EE9SnxSML1W8="`
			`];`

switch to flake 2022-04-10 20:57:52 +02:00			`inputs = {`
flake: sort inputs 2022-12-12 07:18:12 +10:00			`nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable-small";`
			`flake-parts.url = "github:hercules-ci/flake-parts";`
			`flake-parts.inputs.nixpkgs-lib.follows = "nixpkgs";`
switch to flake 2022-04-10 20:57:52 +02:00			`sops-nix.url = "github:Mic92/sops-nix";`
flake: update inputs 2022-09-25 07:27:35 +10:00			`sops-nix.inputs.nixpkgs.follows = "nixpkgs";`
flake: drop unused sops-nix input Flake lock file updates: • Updated input 'sops-nix/nixpkgs-stable': 'github:NixOS/nixpkgs/c3912035d00ef755ab19394488b41feab95d2e40' (2023-03-18) → follows '' 2023-03-20 13:22:34 +10:00			`sops-nix.inputs.nixpkgs-stable.follows = "";`
re-consolidate configuration by pulling from srvos 2022-12-19 15:59:28 +01:00			`srvos.url = "github:numtide/srvos";`
			`# actually not used when using the modules but than nothing ever will try to fetch this nixpkgs variant`
			`srvos.inputs.nixpkgs.follows = "nixpkgs";`

flake: sort inputs 2022-12-12 07:18:12 +10:00			`nixpkgs-update.url = "github:ryantm/nixpkgs-update";`
drop unused mmdoc 2023-01-15 23:47:28 +01:00			`nixpkgs-update.inputs.mmdoc.follows = "";`
flake: sort inputs 2022-12-12 07:18:12 +10:00			`nixpkgs-update-github-releases.url = "github:ryantm/nixpkgs-update-github-releases";`
			`nixpkgs-update-github-releases.flake = false;`
add nur-update service Flake lock file updates: • Added input 'nur-update': 'github:nix-community/nur-update/5e86794950e8061b6e19040f96cc2620c29e922e' (2022-12-10) • Added input 'nur-update/nixpkgs': follows 'nixpkgs' 2022-12-12 07:41:32 +10:00
			`nur-update.url = "github:nix-community/nur-update";`
			`nur-update.inputs.nixpkgs.follows = "nixpkgs";`
re-install build04 2022-12-30 20:49:32 +01:00
			`disko.url = "github:nix-community/disko";`
			`disko.inputs.nixpkgs.follows = "nixpkgs";`
add treefmt-nix to repository 2022-12-31 07:18:49 +01:00
move terraform-deploy to hercules-ci-effects 2023-03-10 22:48:15 +10:00			`hercules-ci-effects.url = "github:hercules-ci/hercules-ci-effects";`
			`hercules-ci-effects.inputs.flake-parts.follows = "flake-parts";`
			`hercules-ci-effects.inputs.hercules-ci-agent.follows = "";`
			`hercules-ci-effects.inputs.nixpkgs.follows = "nixpkgs";`

add treefmt-nix to repository 2022-12-31 07:18:49 +01:00			`treefmt-nix.url = "github:numtide/treefmt-nix";`
flake: `treefmt-nix` follow nixpkgs Flake lock file updates: • Updated input 'treefmt-nix/nixpkgs': 'github:nixos/nixpkgs/0591d6b57bfeb55dfeec99a671843337bc2c3323' (2023-02-04) → follows 'nixpkgs' 2023-02-06 14:42:30 +10:00			`treefmt-nix.inputs.nixpkgs.follows = "nixpkgs";`
switch to flake 2022-04-10 20:57:52 +02:00			`};`

ci.nix: remove - move effects to separate file - set ciSystems in flake 2023-04-06 11:49:28 +10:00			`outputs = inputs @ { flake-parts, self, ... }:`
flake.nix: Use mkFlake convenience (#260) 2022-09-07 17:47:16 +02:00			`flake-parts.lib.mkFlake`
apply treefmt to codebase 2022-12-31 07:24:17 +01:00			`{ inherit inputs; }`
switch to deploykit from deploy_nixos 2022-08-29 14:11:38 +02:00			`{`
apply treefmt to codebase 2022-12-31 07:24:17 +01:00			`systems = [ "x86_64-linux" "aarch64-linux" "x86_64-darwin" "aarch64-darwin" ];`
switch to flake 2022-04-10 20:57:52 +02:00
ci.nix: remove - move effects to separate file - set ciSystems in flake 2023-04-06 11:49:28 +10:00			`herculesCI = { lib, ... }: {`
			`ciSystems = [ "x86_64-linux" "aarch64-linux" ];`

			`onPush.default.outputs = {`
			`checks = lib.mkForce self.outputs.checks.x86_64-linux;`
			`};`
			`};`

drop bors, switch to merge queue 2023-05-02 18:35:18 +10:00			`hercules-ci.flake-update = {`
			`enable = true;`
			`createPullRequest = true;`
			`autoMergeMethod = "rebase";`
			`when = {`
			`hour = [ 2 ];`
			`dayOfWeek = [ "Mon" "Fri" ];`
			`};`
			`};`

add treefmt-nix to repository 2022-12-31 07:18:49 +01:00			`imports = [`
ci.nix: remove - move effects to separate file - set ciSystems in flake 2023-04-06 11:49:28 +10:00			`inputs.hercules-ci-effects.flakeModule`
shell, treefmt: refactor 2023-04-06 11:41:44 +10:00			`inputs.treefmt-nix.flakeModule`
ci.nix: remove - move effects to separate file - set ciSystems in flake 2023-04-06 11:49:28 +10:00			`./effect.nix`
shell, treefmt: refactor 2023-04-06 11:41:44 +10:00			`./shell.nix`
add treefmt-nix to repository 2022-12-31 07:18:49 +01:00			`];`

switch to mkdocs 2023-04-26 16:19:18 +10:00			`hercules-ci.github-pages.branch = "master";`

			`perSystem = { config, pkgs, ... }: {`
			`treefmt.imports = [ ./treefmt.nix ];`

			`packages.pages = pkgs.runCommand "pages"`
			`{`
			`buildInputs = [ pkgs.python3.pkgs.mkdocs-material ];`
			`} ''`
			`cp -r ${pkgs.lib.cleanSource ./.}/* .`
			`mkdocs build --strict --site-dir $out`
			`'';`

			`hercules-ci.github-pages.settings.contents = config.packages.pages;`
			`};`
treefmt: flatten the config By importing the config on the treefmt module level, it makes the config more flat, and also compatible with non-flake-parts users. 2023-04-12 10:15:26 +02:00
apply treefmt to codebase 2022-12-31 07:24:17 +01:00			`flake.nixosConfigurations =`
			`let`
			`inherit (inputs.nixpkgs.lib) nixosSystem;`
			`common = [`
			`{ _module.args.inputs = inputs; }`
nix-daemon: do not expose flake-inputs.prom anymore This is now part of srvos. 2023-01-02 09:44:59 +01:00			`{ srvos.flake = inputs.self; }`
apply treefmt to codebase 2022-12-31 07:24:17 +01:00			`inputs.sops-nix.nixosModules.sops`
			`inputs.srvos.nixosModules.server`
move telegraf to srvos 2022-12-19 21:49:24 +01:00
import hetzner configuration from srvos 2023-01-01 17:04:38 +01:00			`inputs.srvos.nixosModules.mixins-telegraf`
apply treefmt to codebase 2022-12-31 07:24:17 +01:00			`{ networking.firewall.allowedTCPPorts = [ 9273 ]; }`
			`];`
			`in`
			`{`
flake: drop domain 2023-02-06 18:09:06 +10:00			`build01 = nixosSystem {`
apply treefmt to codebase 2022-12-31 07:24:17 +01:00			`system = "x86_64-linux";`
			`modules =`
			`common`
			`++ [`
			`./build01/configuration.nix`
import hetzner configuration from srvos 2023-01-01 17:04:38 +01:00			`inputs.srvos.nixosModules.hardware-hetzner-online-amd`
apply treefmt to codebase 2022-12-31 07:24:17 +01:00			`];`
			`};`
switch to flake 2022-04-10 20:57:52 +02:00
flake: drop domain 2023-02-06 18:09:06 +10:00			`build02 = nixosSystem {`
apply treefmt to codebase 2022-12-31 07:24:17 +01:00			`system = "x86_64-linux";`
			`modules =`
			`common`
			`++ [`
			`./build02/configuration.nix`
import hetzner configuration from srvos 2023-01-01 17:04:38 +01:00			`inputs.srvos.nixosModules.mixins-nginx`
			`inputs.srvos.nixosModules.hardware-hetzner-online-amd`
apply treefmt to codebase 2022-12-31 07:24:17 +01:00			`];`
			`};`
get rid of niv 2022-04-10 22:08:57 +02:00
flake: drop domain 2023-02-06 18:09:06 +10:00			`build03 = nixosSystem {`
apply treefmt to codebase 2022-12-31 07:24:17 +01:00			`system = "x86_64-linux";`
			`modules =`
			`common`
			`++ [`
			`./build03/configuration.nix`
import hetzner configuration from srvos 2023-01-01 17:04:38 +01:00			`inputs.srvos.nixosModules.mixins-nginx`
			`inputs.srvos.nixosModules.hardware-hetzner-online-amd`
apply treefmt to codebase 2022-12-31 07:24:17 +01:00			`];`
			`};`
switch to deploykit from deploy_nixos 2022-08-29 14:11:38 +02:00
flake: drop domain 2023-02-06 18:09:06 +10:00			`build04 = nixosSystem {`
apply treefmt to codebase 2022-12-31 07:24:17 +01:00			`system = "aarch64-linux";`
			`modules =`
			`common`
			`++ [`
			`./build04/configuration.nix`
			`inputs.disko.nixosModules.disko`
			`];`
			`};`
switch to deploykit from deploy_nixos 2022-08-29 14:11:38 +02:00			`};`
flake.nix: Use mkFlake convenience (#260) 2022-09-07 17:47:16 +02:00			`};`
switch to flake 2022-04-10 20:57:52 +02:00			`}`
No results found.