2019-09-25 03:53:08 +00:00
|
|
|
# NixOps configuration for the hosts utilising IOHK resources
|
2022-03-07 14:26:15 +00:00
|
|
|
{
|
|
|
|
config,
|
|
|
|
pkgs,
|
|
|
|
lib,
|
|
|
|
...
|
|
|
|
}: let
|
2022-02-23 03:45:34 +00:00
|
|
|
sources = import ../nix/sources.nix;
|
2022-05-09 04:05:10 +00:00
|
|
|
nixUnstable = (import sources.nixpkgsUnstable {}).nixVersions.stable;
|
2022-02-23 03:45:34 +00:00
|
|
|
in {
|
2022-03-07 14:26:15 +00:00
|
|
|
imports = [../profiles/terminal-recording.nix ../profiles/nix-direnv.nix];
|
2021-09-03 11:52:52 +00:00
|
|
|
|
2020-04-15 00:17:18 +00:00
|
|
|
nix = {
|
2022-02-23 03:45:34 +00:00
|
|
|
package = nixUnstable;
|
2020-10-21 05:11:08 +00:00
|
|
|
binaryCaches = [
|
|
|
|
"https://cache.nixos.org"
|
2021-07-20 01:02:00 +00:00
|
|
|
"https://erc20.cachix.org"
|
2020-10-21 05:11:08 +00:00
|
|
|
"https://hydra.iohk.io"
|
2020-10-27 07:07:38 +00:00
|
|
|
"s3://iohk-vit-bitte/infra/binary-cache/?region=eu-central-1"
|
2020-10-21 05:11:08 +00:00
|
|
|
];
|
|
|
|
binaryCachePublicKeys = [
|
|
|
|
"cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY="
|
2021-07-20 01:02:00 +00:00
|
|
|
"erc20.cachix.org-1:SSf1RXfccF4/rwiwgBrbV7n8EBn0xciuU/TMdtor8LE="
|
2020-10-21 05:11:08 +00:00
|
|
|
"hydra.iohk.io:f/Ea+s+dFdN+3Y/G+FDgSq+a5NEWhJGzdjvKNGv0/EQ="
|
|
|
|
"iohk.cachix.org-1:DpRUyj7h7V830dp/i6Nti+NEO2/nhblbov/8MW7Rqoo="
|
2020-10-27 07:07:38 +00:00
|
|
|
"vit-testnet-0:0lvkEoYh+XrBh7pr4bXjsUisUkUxsyLvvWBIJwym/RM="
|
2020-10-21 05:11:08 +00:00
|
|
|
];
|
2020-04-15 00:17:18 +00:00
|
|
|
extraOptions = ''
|
2020-04-21 01:16:15 +00:00
|
|
|
#repeat = 1 # Ensure reproducibility of builds
|
2020-10-21 05:11:08 +00:00
|
|
|
experimental-features = nix-command flakes ca-references
|
2020-04-15 00:17:18 +00:00
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
2020-03-06 04:54:32 +00:00
|
|
|
# Set the system-wide environment
|
|
|
|
environment = {
|
|
|
|
systemPackages = with pkgs; [
|
2021-11-16 04:57:23 +00:00
|
|
|
awscli # Unified tool to manage your AWS services
|
|
|
|
bitwarden-cli # CLI client for Bitwarden
|
|
|
|
buildkite-agent # Buildkite for IOHK
|
|
|
|
cue # A data constraint language
|
2022-01-18 03:15:32 +00:00
|
|
|
discord # cross-platform voice and text chat
|
2021-11-16 04:57:23 +00:00
|
|
|
docker # Pack, ship and run any application as a lightweight container
|
|
|
|
docker-compose # Multi-container orchestration for Docker
|
|
|
|
freerdp # A Remote Desktop Protocol Client, xfreerdp
|
|
|
|
gist # Upload code to https://gist.github.com (or github enterprise)
|
|
|
|
gnupg # GNU Privacy Guard, a GPL OpenPGP implementation
|
|
|
|
go-jira # Simple command line client for Atlassian's Jira service written in Go
|
|
|
|
jq # A lightweight and flexible command-line JSON processor
|
|
|
|
keybase-gui # The Keybase official client
|
|
|
|
magic-wormhole # Securely transfer data between computers
|
|
|
|
python38Packages.grip # Preview GitHub Markdown files like locally
|
|
|
|
s3fs # Mount an S3 bucket as filesystem through FUSE
|
|
|
|
shellcheck # Shell script analysis tool
|
|
|
|
slack-dark # Slack desktop client
|
|
|
|
xxd # make a hexdump or do the reverse
|
2020-03-06 04:54:32 +00:00
|
|
|
];
|
2020-05-05 14:05:09 +00:00
|
|
|
variables = {
|
2021-11-16 04:57:23 +00:00
|
|
|
NIX_SKIP_KEYBASE_CHECKS = "1"; # As per IOHK Keybase reqs
|
2020-05-05 14:05:09 +00:00
|
|
|
};
|
2020-03-06 04:54:32 +00:00
|
|
|
};
|
|
|
|
|
2020-06-12 03:14:33 +00:00
|
|
|
virtualisation.docker.enable = true;
|
2020-03-06 04:54:32 +00:00
|
|
|
|
2020-05-05 15:19:31 +00:00
|
|
|
services = {
|
|
|
|
keybase.enable = true;
|
|
|
|
#postgresql = {
|
|
|
|
# enable = true; # Ensure postgresql is enabled
|
|
|
|
# package = pkgs.postgresql_10; # Set the required version, if needed
|
|
|
|
};
|
2020-03-17 00:02:54 +00:00
|
|
|
|
2022-03-07 14:26:15 +00:00
|
|
|
users.groups.docker.members = ["craige"];
|
2019-09-25 03:53:08 +00:00
|
|
|
}
|