sercanto/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

build02, build03: refactor

Browse source
This commit is contained in:
zowoq 2023-04-06 11:40:39 +10:00
parent bee3608f5f
commit 89f7987884
5 changed files with 7 additions and 18 deletions

1
build02/configuration.nix
View file

@ -2,6 +2,7 @@
{ {
imports = [ imports = [
./nixpkgs-update.nix
../roles/common.nix ../roles/common.nix
../roles/hercules-ci ../roles/hercules-ci
../roles/zfs-raid.nix ../roles/zfs-raid.nix

9
build02/nixpkgs-update.nix
View file

@ -1,7 +1,4 @@
{ nixpkgs-update { pkgs, lib, inputs, config, ... }:
, nixpkgs-update-github-releases
}:
{ pkgs, lib, config, ... }:
let let
userLib = import ../users/lib.nix { inherit lib; }; userLib = import ../users/lib.nix { inherit lib; };
@ -18,7 +15,7 @@ let
cachix cachix
]; ];
nixpkgs-update-github-releases' = "${nixpkgs-update-github-releases}/main.py"; nixpkgs-update-github-releases' = "${inputs.nixpkgs-update-github-releases}/main.py";
mkWorker = name: { mkWorker = name: {
after = [ "network-online.target" ]; after = [ "network-online.target" ];
@ -156,7 +153,7 @@ in
"e /var/cache/nixpkgs-update/worker/nixpkgs-review - - - 1d -" "e /var/cache/nixpkgs-update/worker/nixpkgs-review - - - 1d -"
"d /var/lib/nixpkgs-update/bin/ 700 r-ryantm r-ryantm - -" "d /var/lib/nixpkgs-update/bin/ 700 r-ryantm r-ryantm - -"
"L+ ${nixpkgs-update-bin} - - - - ${nixpkgs-update.packages.${pkgs.system}.default}/bin/nixpkgs-update" "L+ ${nixpkgs-update-bin} - - - - ${inputs.nixpkgs-update.packages.${pkgs.system}.default}/bin/nixpkgs-update"
"L+ /var/lib/nixpkgs-update/worker/github_token.txt - - - - ${config.sops.secrets.github-r-ryantm-token.path}" "L+ /var/lib/nixpkgs-update/worker/github_token.txt - - - - ${config.sops.secrets.github-r-ryantm-token.path}"
"d /var/lib/nixpkgs-update/worker/cachix/ 700 r-ryantm r-ryantm - -" "d /var/lib/nixpkgs-update/worker/cachix/ 700 r-ryantm r-ryantm - -"
"L+ /var/lib/nixpkgs-update/worker/cachix/cachix.dhall - - - - ${config.sops.secrets.nix-community-cachix.path}" "L+ /var/lib/nixpkgs-update/worker/cachix/cachix.dhall - - - - ${config.sops.secrets.nix-community-cachix.path}"

1
build03/configuration.nix
View file

@ -17,6 +17,7 @@
../services/hound ../services/hound
../services/hydra ../services/hydra
../services/nur-update
]; ];
# /boot is a mirror raid # /boot is a mirror raid

10
flake.nix
View file

@ -91,13 +91,6 @@
modules = modules =
common common
++ [ ++ [
(import ./build02/nixpkgs-update.nix {
inherit
(inputs)
nixpkgs-update
nixpkgs-update-github-releases
;
})
./build02/configuration.nix ./build02/configuration.nix
inputs.srvos.nixosModules.mixins-nginx inputs.srvos.nixosModules.mixins-nginx
inputs.srvos.nixosModules.hardware-hetzner-online-amd inputs.srvos.nixosModules.hardware-hetzner-online-amd
@ -109,9 +102,6 @@
modules = modules =
common common
++ [ ++ [
(import ./services/nur-update {
inherit (inputs) nur-update;
})
./build03/configuration.nix ./build03/configuration.nix
inputs.srvos.nixosModules.mixins-nginx inputs.srvos.nixosModules.mixins-nginx
inputs.srvos.nixosModules.hardware-hetzner-online-amd inputs.srvos.nixosModules.hardware-hetzner-online-amd

4
services/nur-update/default.nix
View file

@ -1,4 +1,4 @@
{ nur-update }: { config, pkgs, ... }: { config, inputs, pkgs, ... }:
{ {
services.nginx.virtualHosts."nur-update.nix-community.org" = { services.nginx.virtualHosts."nur-update.nix-community.org" = {
@ -13,7 +13,7 @@
let let
python = pkgs.python3.withPackages python = pkgs.python3.withPackages
(ps: with ps; [ (ps: with ps; [
(ps.toPythonModule nur-update.packages.${pkgs.system}.default) (ps.toPythonModule inputs.nur-update.packages.${pkgs.system}.default)
gunicorn gunicorn
]); ]);
in in