infra/shell.nix

{ pkgs ? import <nixpkgs> {}
, sops-import-keys-hook
}:

with pkgs;
mkShell {
  sopsPGPKeyDirs = [
    "./keys"
  ];

  buildInputs = with pkgs; [
    git-crypt
    terraform
    (terraform.withPlugins (
      p: [
        p.cloudflare
        p.null
        p.external
      ]
    ))
    sops
    python3.pkgs.invoke
    rsync

    sops-import-keys-hook
  ];

  # terraform cloud without the remote execution part
  TF_FORCE_LOCAL_BACKEND = "1";
  TF_CLI_CONFIG_FILE = toString ./secrets/terraformrc;

  shellHooks = ''
    export CLOUDFLARE_API_TOKEN=$(< ./secrets/cloudflare-api-token)
    export NIX_USER_CONF_FILES="$(pwd)/nix/nix.conf";
  '';
}
switch to flake 2022-04-10 20:57:52 +02:00			`{ pkgs ? import <nixpkgs> {}`
			`, sops-import-keys-hook`
			`}:`
nixos: set default deployment and state in the shell This makes it easier to play with nixops. Eg: `nixops ssh build01` 2020-01-12 14:03:14 +01:00
switch to flake 2022-04-10 20:57:52 +02:00			`with pkgs;`
			`mkShell {`
import gpg keys with import-keys-hook 2021-09-29 19:09:35 +02:00			`sopsPGPKeyDirs = [`
			`"./keys"`
			`];`

switch to flake 2022-04-10 20:57:52 +02:00			`buildInputs = with pkgs; [`
ci: add basic nix and cachix support (#15) 2020-04-07 13:31:11 +00:00			`git-crypt`
			`terraform`
switch to flake 2022-04-10 20:57:52 +02:00			`(terraform.withPlugins (`
			`p: [`
			`p.cloudflare`
			`p.null`
			`p.external`
			`]`
			`))`
migrate to sops-nix 2021-09-25 22:35:51 +02:00			`sops`
switch to flake 2022-04-10 20:57:52 +02:00			`python3.pkgs.invoke`
use custom deploy script 2021-10-21 11:09:52 +02:00			`rsync`
import gpg keys with import-keys-hook 2021-09-29 19:09:35 +02:00
switch to flake 2022-04-10 20:57:52 +02:00			`sops-import-keys-hook`
New nix-community infra repo! Currently contains the Nixops deployment for our builder machine 2019-08-10 12:43:48 +01:00			`];`
manage DNS with terraform 2020-01-12 19:32:14 +01:00
			`# terraform cloud without the remote execution part`
			`TF_FORCE_LOCAL_BACKEND = "1";`
			`TF_CLI_CONFIG_FILE = toString ./secrets/terraformrc;`

			`shellHooks = ''`
			`export CLOUDFLARE_API_TOKEN=$(< ./secrets/cloudflare-api-token)`
switch from nixops to morph 2021-10-03 14:18:57 +02:00			`export NIX_USER_CONF_FILES="$(pwd)/nix/nix.conf";`
manage DNS with terraform 2020-01-12 19:32:14 +01:00			`'';`
New nix-community infra repo! Currently contains the Nixops deployment for our builder machine 2019-08-10 12:43:48 +01:00			`}`
No results found.