From eceb1ba89238dbbf719f0c1f405f375ad8122804 Mon Sep 17 00:00:00 2001
From: Jack O'Sullivan <jackos1998@gmail.com>
Date: Sun, 19 Feb 2023 16:49:07 +0000
Subject: [PATCH] nixos/object: Migrate to SNSD deployment

---
 .../colony/vms/shill/containers/object.nix    | 19 ++++++++++++++++---
 secrets/object/minio-client-config.json.age   | 18 ++++++++++++++++++
 2 files changed, 34 insertions(+), 3 deletions(-)
 create mode 100644 secrets/object/minio-client-config.json.age

diff --git a/nixos/boxes/colony/vms/shill/containers/object.nix b/nixos/boxes/colony/vms/shill/containers/object.nix
index 1e7dd59..f4b7301 100644
--- a/nixos/boxes/colony/vms/shill/containers/object.nix
+++ b/nixos/boxes/colony/vms/shill/containers/object.nix
@@ -18,6 +18,7 @@
     configuration = { lib, pkgs, config, assignments, ... }:
     let
       inherit (lib) mkMerge mkIf;
+      inherit (config.my.user.homeConfig.lib.file) mkOutOfStoreSymlink;
       inherit (lib.my) networkdAssignment;
     in
     {
@@ -35,12 +36,20 @@
                   owner = "sharry";
                   group = "sharry";
                 };
+                "object/minio-client-config.json" = {
+                  owner = config.my.user.config.name;
+                  group = config.my.user.config.group;
+                };
               };
             };
 
             firewall = {
               tcp.allowed = [ 9000 9001 config.services.sharry.config.bind.port ];
             };
+
+            user.homeConfig = {
+              home.file.".mc/config.json".source = mkOutOfStoreSymlink config.age.secrets."object/minio-client-config.json".path;
+            };
           };
 
           systemd = {
@@ -57,6 +66,12 @@
             };
           };
 
+          environment = {
+            systemPackages = with pkgs; [
+              minio-client
+            ];
+          };
+
           services = {
             minio = {
               enable = true;
@@ -64,12 +79,10 @@
               browser = true;
               rootCredentialsFile = config.age.secrets."object/minio.env".path;
               dataDir = [ "/mnt/minio" ];
-
-              # TODO: Migrate from fs to snsd backend!
-              package = pkgs.minio_legacy_fs;
             };
 
             sharry = {
+              # TODO: wait for postgres connection to succeed
               enable = true;
               configOverridesFile = config.age.secrets."object/sharry.conf".path;
 
diff --git a/secrets/object/minio-client-config.json.age b/secrets/object/minio-client-config.json.age
new file mode 100644
index 0000000..4b38627
--- /dev/null
+++ b/secrets/object/minio-client-config.json.age
@@ -0,0 +1,18 @@
+-----BEGIN AGE ENCRYPTED FILE-----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+-----END AGE ENCRYPTED FILE-----