Compare commits
3 Commits
731cfce080
...
01897ef0bb
| Author | SHA1 | Date | |
|---|---|---|---|
| 01897ef0bb | |||
| 82eab34f4b | |||
| 241abd02ac |
@@ -6,7 +6,7 @@ on:
|
|||||||
|
|
||||||
jobs:
|
jobs:
|
||||||
check:
|
check:
|
||||||
name: Check Nix flake
|
name: Check, build and cache Nix flake
|
||||||
runs-on: ubuntu-22.04
|
runs-on: ubuntu-22.04
|
||||||
steps:
|
steps:
|
||||||
- uses: actions/checkout@v4
|
- uses: actions/checkout@v4
|
||||||
@@ -27,10 +27,14 @@ jobs:
|
|||||||
nix run .#nixpkgs.mine.x86_64-linux.attic-client -- \
|
nix run .#nixpkgs.mine.x86_64-linux.attic-client -- \
|
||||||
login --set-default colony https://nix-cache.nul.ie "${{ secrets.NIX_CACHE_TOKEN }}"
|
login --set-default colony https://nix-cache.nul.ie "${{ secrets.NIX_CACHE_TOKEN }}"
|
||||||
|
|
||||||
# - name: Check flake
|
- name: Check and build flake
|
||||||
# run: nix flake check
|
id: build
|
||||||
|
run: |
|
||||||
|
nix flake check
|
||||||
|
|
||||||
|
path=$(nix build --no-link .#ci.x86_64-linux --json | jq -r .[0].outputs.out)
|
||||||
|
echo "path=$path" >> "$GITHUB_OUTPUT"
|
||||||
- name: Push to cache
|
- name: Push to cache
|
||||||
run: |
|
run: |
|
||||||
path=$(nix build --no-link .#nixosConfigurations.middleman.config.system.build.toplevel --json | jq -r .[0].outputs.out)
|
|
||||||
nix run .#nixpkgs.mine.x86_64-linux.attic-client -- \
|
nix run .#nixpkgs.mine.x86_64-linux.attic-client -- \
|
||||||
push main $path
|
push main ${{ steps.build.outputs.path }}
|
||||||
|
|||||||
@@ -1 +0,0 @@
|
|||||||
age1ythn9runhsvwmszqfy69zetc422hug39ta4g236tue6f5qf65y0q4qg7xx
|
|
||||||
26
flake.nix
26
flake.nix
@@ -51,8 +51,8 @@
|
|||||||
...
|
...
|
||||||
}:
|
}:
|
||||||
let
|
let
|
||||||
inherit (builtins) mapAttrs;
|
inherit (builtins) mapAttrs replaceStrings;
|
||||||
inherit (lib) genAttrs recurseIntoAttrs evalModules;
|
inherit (lib) mapAttrs' filterAttrs nameValuePair recurseIntoAttrs evalModules;
|
||||||
inherit (lib.flake) flattenTree eachDefaultSystem;
|
inherit (lib.flake) flattenTree eachDefaultSystem;
|
||||||
inherit (lib.my) mkDefaultSystemsPkgs flakePackageOverlay;
|
inherit (lib.my) mkDefaultSystemsPkgs flakePackageOverlay;
|
||||||
|
|
||||||
@@ -164,16 +164,34 @@
|
|||||||
pkgs = pkgs'.mine.${system};
|
pkgs = pkgs'.mine.${system};
|
||||||
lib = pkgs.lib;
|
lib = pkgs.lib;
|
||||||
|
|
||||||
|
filterSystem = filterAttrs (_: c: c.config.nixpkgs.system == system);
|
||||||
|
homes' =
|
||||||
|
mapAttrs
|
||||||
|
(_: h: h.activationPackage)
|
||||||
|
(filterSystem self.homeConfigurations);
|
||||||
|
systems' =
|
||||||
|
mapAttrs
|
||||||
|
(_: h: h.config.system.build.toplevel)
|
||||||
|
(filterSystem self.nixosConfigurations);
|
||||||
shell = pkgs.devshell.mkShell ./devshell;
|
shell = pkgs.devshell.mkShell ./devshell;
|
||||||
in
|
in
|
||||||
# Stuff for each platform
|
# Stuff for each platform
|
||||||
{
|
{
|
||||||
checks = flattenTree {
|
checks = flattenTree {
|
||||||
homeConfigurations = recurseIntoAttrs (mapAttrs (_: h: h.activationPackage)
|
homeConfigurations = recurseIntoAttrs homes';
|
||||||
(lib.filterAttrs (_: h: h.config.nixpkgs.system == system) self.homeConfigurations));
|
|
||||||
deploy = recurseIntoAttrs (pkgs.deploy-rs.lib.deployChecks self.deploy);
|
deploy = recurseIntoAttrs (pkgs.deploy-rs.lib.deployChecks self.deploy);
|
||||||
};
|
};
|
||||||
|
|
||||||
|
ci =
|
||||||
|
let
|
||||||
|
homes =
|
||||||
|
mapAttrs'
|
||||||
|
(n: v: nameValuePair ''home-${replaceStrings ["@"] ["-at-"] n}'' v)
|
||||||
|
homes';
|
||||||
|
systems = mapAttrs' (n: v: nameValuePair "system-${n}" v) systems';
|
||||||
|
in
|
||||||
|
pkgs.linkFarm "ci" (homes // systems);
|
||||||
|
|
||||||
packages = flattenTree (import ./pkgs { inherit lib pkgs; });
|
packages = flattenTree (import ./pkgs { inherit lib pkgs; });
|
||||||
|
|
||||||
devShells.default = shell;
|
devShells.default = shell;
|
||||||
|
|||||||
@@ -448,7 +448,7 @@ in
|
|||||||
chain forward {
|
chain forward {
|
||||||
iifname { wan, $ixps } oifname base jump filter-routing
|
iifname { wan, $ixps } oifname base jump filter-routing
|
||||||
oifname $ixps jump ixp
|
oifname $ixps jump ixp
|
||||||
iifname base oifname { wan, $ixps } accept
|
iifname base oifname { base, wan, $ixps } accept
|
||||||
oifname { as211024, kelder } accept
|
oifname { as211024, kelder } accept
|
||||||
}
|
}
|
||||||
chain output {
|
chain output {
|
||||||
|
|||||||
@@ -412,7 +412,6 @@ in
|
|||||||
|
|
||||||
nixCacheableRegex = ''^\/(\S+\.narinfo|nar\/\S+\.nar\.\S+)$'';
|
nixCacheableRegex = ''^\/(\S+\.narinfo|nar\/\S+\.nar\.\S+)$'';
|
||||||
nixCacheHeaders = ''
|
nixCacheHeaders = ''
|
||||||
proxy_hide_header "X-Amz-Request-Id";
|
|
||||||
add_header Cache-Control $nix_cache_control;
|
add_header Cache-Control $nix_cache_control;
|
||||||
add_header Expires $nix_expires;
|
add_header Expires $nix_expires;
|
||||||
'';
|
'';
|
||||||
@@ -448,7 +447,6 @@ in
|
|||||||
};
|
};
|
||||||
};
|
};
|
||||||
useACMEHost = pubDomain;
|
useACMEHost = pubDomain;
|
||||||
onlySSL = false;
|
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
|
|||||||
@@ -162,7 +162,7 @@ in
|
|||||||
type = "s3";
|
type = "s3";
|
||||||
region = "eu-central-1";
|
region = "eu-central-1";
|
||||||
bucket = "nix-attic";
|
bucket = "nix-attic";
|
||||||
endpoint = "http://localhost:9000";
|
endpoint = "https://s3.nul.ie";
|
||||||
};
|
};
|
||||||
chunking = {
|
chunking = {
|
||||||
nar-size-threshold = 65536;
|
nar-size-threshold = 65536;
|
||||||
|
|||||||
@@ -9,7 +9,6 @@ let
|
|||||||
|
|
||||||
defaultKeys = [
|
defaultKeys = [
|
||||||
(fileContents .keys/dev.pub)
|
(fileContents .keys/dev.pub)
|
||||||
(fileContents .keys/ci.pub)
|
|
||||||
];
|
];
|
||||||
secretKeys =
|
secretKeys =
|
||||||
zipAttrsWith
|
zipAttrsWith
|
||||||
|
|||||||
Reference in New Issue
Block a user