2022-04-10 20:57:52 +02:00
|
|
|
{ pkgs ? import <nixpkgs> {}
|
|
|
|
|
, sops-import-keys-hook
|
|
|
|
|
}:
|
2020-01-12 14:03:14 +01:00
|
|
|
|
2022-04-10 20:57:52 +02:00
|
|
|
with pkgs;
|
|
|
|
|
mkShell {
|
2021-09-29 19:09:35 +02:00
|
|
|
sopsPGPKeyDirs = [
|
|
|
|
|
"./keys"
|
|
|
|
|
];
|
|
|
|
|
|
2022-04-10 20:57:52 +02:00
|
|
|
buildInputs = with pkgs; [
|
2020-04-07 13:31:11 +00:00
|
|
|
git-crypt
|
|
|
|
|
terraform
|
2022-04-10 20:57:52 +02:00
|
|
|
(terraform.withPlugins (
|
|
|
|
|
p: [
|
|
|
|
|
p.cloudflare
|
|
|
|
|
p.null
|
|
|
|
|
p.external
|
|
|
|
|
]
|
|
|
|
|
))
|
2021-09-25 22:35:51 +02:00
|
|
|
sops
|
2022-04-10 20:57:52 +02:00
|
|
|
python3.pkgs.invoke
|
2021-10-21 11:09:52 +02:00
|
|
|
rsync
|
2021-09-29 19:09:35 +02:00
|
|
|
|
2022-04-10 20:57:52 +02:00
|
|
|
sops-import-keys-hook
|
2019-08-10 12:43:48 +01:00
|
|
|
];
|
2020-01-12 19:32:14 +01:00
|
|
|
|
|
|
|
|
# terraform cloud without the remote execution part
|
|
|
|
|
TF_FORCE_LOCAL_BACKEND = "1";
|
|
|
|
|
TF_CLI_CONFIG_FILE = toString ./secrets/terraformrc;
|
|
|
|
|
|
2022-04-18 07:39:57 +02:00
|
|
|
shellHook = ''
|
2020-01-12 19:32:14 +01:00
|
|
|
export CLOUDFLARE_API_TOKEN=$(< ./secrets/cloudflare-api-token)
|
|
|
|
|
'';
|
2019-08-10 12:43:48 +01:00
|
|
|
}
|
