lasuite-federez/nix
4
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
nix/flake.nix

87 lines
No EOL
2.9 KiB
Nix
Raw Blame History

{
description = "LaSuite Federez Deployment";
inputs = {
# General sources
deploy-rs.url = "github:serokell/deploy-rs";
agenix.url = "github:ryantm/agenix";
nixpkgs-25-05.url = "github:NixOS/nixpkgs/nixos-25.05";
nixpkgs-unstable.url = "github:NixOS/nixpkgs/nixos-unstable";
};
outputs = { self, nixpkgs-25-05, nixpkgs-unstable, deploy-rs, agenix }: let
system = "x86_64-linux";
# Mapping version identifiers to nixpkgs
nixpkgsMap = {
"25.05" = nixpkgs-25-05;
"unstable" = nixpkgs-unstable;
};
importPkgs = version: overlays: import nixpkgsMap.${version} {
inherit system;
overlays = if overlays == null then [] else overlays;
};
# Unmodified nixpkgs
getNixpkgs = version: importPkgs version [];
# nixpkgs with deploy-rs overlay but force the nixpkgs package
getDeployPkgs = version: importPkgs version [
deploy-rs.overlays.default
(self: super: {
deploy-rs = {
inherit (getNixpkgs version) deploy-rs;
lib = super.deploy-rs.lib;
};
})
];
nodes = import ./nodes.nix;
mapping = import ./mapping.nix;
findRolesForHost = hostName: builtins.filter
(roleName: builtins.elem hostName mapping.${roleName}.hosts)
(builtins.attrNames mapping);
getModulesForHost = hostName: let
roles = findRolesForHost hostName;
modulesList = builtins.map
(role: mapping.${role}._inherit or [])
roles;
in builtins.concatLists modulesList;
defaultModules = [
agenix.nixosModules.default
./shared/users.nix
./shared/commons.nix
];
in {
nixosConfigurations = builtins.mapAttrs (name: config:
nixpkgsMap.${config.ver}.lib.nixosSystem {
system = config.system;
modules = getModulesForHost "${name}" ++ defaultModules ++ [{ hostName = "${name}"; }];
}
) nodes;
deploy = {
user = "root";
autoRollback = true;
magicRollback = true;
remoteBuild = true;
nodes = builtins.mapAttrs (name: config: {
hostname = builtins.head (builtins.split "/" config.ip4);
profilesOrder = [ "system" ];
profiles = {
system = {
path = (getDeployPkgs config.ver).deploy-rs.lib.activate.nixos self.nixosConfigurations.${name};
};
};
}) nodes;
};
# This is highly advised, and will prevent many possible mistakes, just run "deploy -s" to bypass it
checks = builtins.mapAttrs (system: deployLib: deployLib.deployChecks self.deploy) deploy-rs.lib;
};
}
Reference in a new issue View git blame Copy permalink