2020-04-07 13:31:11 +00:00
|
|
|
{ system ? builtins.currentSystem }:
|
2019-08-10 12:43:48 +01:00
|
|
|
let
|
2021-09-29 19:09:35 +02:00
|
|
|
sources = import ./nix/sources.nix;
|
2020-04-07 13:31:11 +00:00
|
|
|
pkgs = import ./nix { inherit system; };
|
2020-01-22 12:37:13 +01:00
|
|
|
in
|
|
|
|
|
pkgs.mkShell {
|
|
|
|
|
NIX_PATH = "nixpkgs=${toString pkgs.path}";
|
2021-10-03 14:18:57 +02:00
|
|
|
# required for morph
|
|
|
|
|
SSH_USER = "root";
|
2020-01-12 14:03:14 +01:00
|
|
|
|
2021-09-29 19:09:35 +02:00
|
|
|
sopsPGPKeyDirs = [
|
|
|
|
|
"./keys"
|
|
|
|
|
];
|
|
|
|
|
|
2020-04-07 13:31:11 +00:00
|
|
|
buildInputs = with pkgs.nix-community-infra; [
|
|
|
|
|
git-crypt
|
2021-03-21 15:59:20 +01:00
|
|
|
niv
|
2020-04-07 13:31:11 +00:00
|
|
|
terraform
|
2021-09-25 22:35:51 +02:00
|
|
|
sops
|
2021-10-03 14:18:57 +02:00
|
|
|
morph
|
2021-09-29 19:09:35 +02:00
|
|
|
|
|
|
|
|
(pkgs.callPackage sources.sops-nix {}).sops-import-keys-hook
|
2019-08-10 12:43:48 +01:00
|
|
|
];
|
2020-01-12 19:32:14 +01:00
|
|
|
|
|
|
|
|
# terraform cloud without the remote execution part
|
|
|
|
|
TF_FORCE_LOCAL_BACKEND = "1";
|
|
|
|
|
TF_CLI_CONFIG_FILE = toString ./secrets/terraformrc;
|
|
|
|
|
|
|
|
|
|
shellHooks = ''
|
|
|
|
|
export CLOUDFLARE_API_TOKEN=$(< ./secrets/cloudflare-api-token)
|
2021-10-03 14:18:57 +02:00
|
|
|
export NIX_USER_CONF_FILES="$(pwd)/nix/nix.conf";
|
2020-01-12 19:32:14 +01:00
|
|
|
'';
|
2019-08-10 12:43:48 +01:00
|
|
|
}
|
