mio-ops/profiles/iohk.nix

74 lines
2.6 KiB
Nix
Raw Normal View History

2019-09-25 03:53:08 +00:00
# NixOps configuration for the hosts utilising IOHK resources
{ config, pkgs, lib, ... }:
{
2021-09-03 11:52:52 +00:00
imports = [
../profiles/terminal-recording.nix
];
2020-04-15 00:17:18 +00:00
nix = {
2020-10-21 05:11:08 +00:00
package = pkgs.nixFlakes;
binaryCaches = [
"https://cache.nixos.org"
2021-07-20 01:02:00 +00:00
"https://erc20.cachix.org"
2020-10-21 05:11:08 +00:00
"https://hydra.iohk.io"
2021-03-14 23:14:11 +00:00
"https://hydra.mantis.ist"
2020-10-27 07:07:38 +00:00
"s3://iohk-vit-bitte/infra/binary-cache/?region=eu-central-1"
2020-10-21 05:11:08 +00:00
];
binaryCachePublicKeys = [
"cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY="
2021-07-20 01:02:00 +00:00
"erc20.cachix.org-1:SSf1RXfccF4/rwiwgBrbV7n8EBn0xciuU/TMdtor8LE="
2020-10-21 05:11:08 +00:00
"hydra.iohk.io:f/Ea+s+dFdN+3Y/G+FDgSq+a5NEWhJGzdjvKNGv0/EQ="
"iohk.cachix.org-1:DpRUyj7h7V830dp/i6Nti+NEO2/nhblbov/8MW7Rqoo="
2021-03-14 23:14:11 +00:00
"hydra.mantis.ist-1:4LTe7Q+5pm8+HawKxvmn2Hx0E3NbkYjtf1oWv+eAmTo="
2020-10-27 07:07:38 +00:00
"vit-testnet-0:0lvkEoYh+XrBh7pr4bXjsUisUkUxsyLvvWBIJwym/RM="
2020-10-21 05:11:08 +00:00
];
2020-04-15 00:17:18 +00:00
extraOptions = ''
2020-04-21 01:16:15 +00:00
#repeat = 1 # Ensure reproducibility of builds
2020-10-21 05:11:08 +00:00
experimental-features = nix-command flakes ca-references
2020-04-15 00:17:18 +00:00
'';
};
2020-03-06 04:54:32 +00:00
# Set the system-wide environment
environment = {
systemPackages = with pkgs; [
2020-05-05 15:14:52 +00:00
awscli # Unified tool to manage your AWS services
buildkite-agent # Buildkite for IOHK
2021-03-19 01:53:01 +00:00
cue # A data constraint language
2020-06-12 03:14:33 +00:00
docker # Pack, ship and run any application as a lightweight container
docker-compose # Multi-container orchestration for Docker
2020-05-05 15:14:52 +00:00
freerdp # A Remote Desktop Protocol Client, xfreerdp
gist # Upload code to https://gist.github.com (or github enterprise)
gnupg # GNU Privacy Guard, a GPL OpenPGP implementation
go-jira # Simple command line client for Atlassian's Jira service written in Go
jq # A lightweight and flexible command-line JSON processor
keybase-gui # The Keybase official client
2021-07-21 00:12:32 +00:00
magic-wormhole # Securely transfer data between computers
python38Packages.grip # Preview GitHub Markdown files like locally
2020-10-03 13:26:05 +00:00
s3fs # Mount an S3 bucket as filesystem through FUSE
2021-03-26 23:18:45 +00:00
shellcheck # Shell script analysis tool
2020-05-05 15:14:52 +00:00
slack-dark # Slack desktop client
2021-07-21 00:12:32 +00:00
xxd # make a hexdump or do the reverse
2020-03-06 04:54:32 +00:00
];
2020-05-05 14:05:09 +00:00
variables = {
NIX_SKIP_KEYBASE_CHECKS = "1"; # As per IOHK Keybase reqs
};
2020-03-06 04:54:32 +00:00
};
2020-06-12 03:14:33 +00:00
virtualisation.docker.enable = true;
2020-03-06 04:54:32 +00:00
2020-05-05 15:19:31 +00:00
services = {
keybase.enable = true;
#postgresql = {
# enable = true; # Ensure postgresql is enabled
# package = pkgs.postgresql_10; # Set the required version, if needed
};
2020-03-17 00:02:54 +00:00
2020-06-12 03:30:19 +00:00
users.groups.docker.members = [
"craige"
];
2019-09-25 03:53:08 +00:00
}