feat: colmena

Signed-off-by: jolheiser <john.olheiser@gmail.com>
teamcity
jolheiser 2023-10-17 23:54:24 -05:00
parent c0b5332645
commit 0946022a18
Signed by: jolheiser
GPG Key ID: B853ADA5DA7BBF7A
5 changed files with 27 additions and 14 deletions

View File

@ -169,14 +169,18 @@
(commonConfig {})
];
};
"dragonwell" = nixpkgs.lib.nixosSystem {
system = "x86_64-linux";
modules = [
home-manager.nixosModules.home-manager
agenix.nixosModules.default
};
colmena = {
meta = {
nixpkgs = import nixpkgs {
system = "x86_64-linux";
overlays = overlays;
};
};
dragonwell = {
imports = [
golink.nixosModules.default
./machines/dragonwell
(commonConfig {gui = false;})
];
};
};
@ -187,6 +191,7 @@
devShells.default = pkgs.mkShell {
nativeBuildInputs = [
agenix.packages.${system}.agenix
pkgs.colmena
];
};
});

View File

@ -13,6 +13,10 @@ rebuild *args:
switch *args:
@just rebuild switch {{args}}
# Run colmena for remote deploy
colmena node:
@nix run nixpkgs#colmena -- apply --on {{node}}
# Update the flake
update-flake:
@nix flake update

View File

@ -3,7 +3,7 @@
lib,
...
}: let
packages = ["tmpl" "git-age" "ffmd"];
packages = ["tmpl" "git-age" "ffmd" "kv"];
in {
services.caddy = {
enable = true;

View File

@ -1,7 +1,8 @@
let
username = "jolheiser";
key = ''ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDfKqCWtDlS3tgvfT6hQN+ii8UtabIZ+ZNmYN+bLwIa8PHOEW5MbfaqXSlhKkSi4+7SfQDCHphw0SMfhsQ4qMEcoywZ+4niDgKlQEVkl+S/VGbLuPe92NRStkyreZBLPr3Rh7ScNlGHcmHmoV9v7725fMnsMmabGVhpGO84PwNHOfJyv2tx2h6LxFbAV8S44UQu2lc8YLWCK2UvKuRnBerBXLnDQThUUX8UuCFzb786gQzD5XDU0MENbByxiy0XdVGAC+tFXEiSIgFZlFbFYyShgdTP9MzX2MOglEi+ae+1UIFncraW7ptUey7qHFJylpHWWWvE+GTwsg2G50i0FvFj jolheiser@jolheiser'';
in {
imports = [./caddy.nix ./golink.nix ./hardware.nix ../common/nogui];
imports = [./caddy.nix ./golink.nix ./hardware.nix];
boot.tmp.cleanOnBoot = true;
zramSwap.enable = true;
@ -18,12 +19,15 @@ in {
services.openssh.enable = true;
virtualisation.docker.enable = true;
users.users."${username}" = {
extraGroups = ["wheel" "docker" "storage"];
isNormalUser = true;
openssh.authorizedKeys.keys = [
''ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDfKqCWtDlS3tgvfT6hQN+ii8UtabIZ+ZNmYN+bLwIa8PHOEW5MbfaqXSlhKkSi4+7SfQDCHphw0SMfhsQ4qMEcoywZ+4niDgKlQEVkl+S/VGbLuPe92NRStkyreZBLPr3Rh7ScNlGHcmHmoV9v7725fMnsMmabGVhpGO84PwNHOfJyv2tx2h6LxFbAV8S44UQu2lc8YLWCK2UvKuRnBerBXLnDQThUUX8UuCFzb786gQzD5XDU0MENbByxiy0XdVGAC+tFXEiSIgFZlFbFYyShgdTP9MzX2MOglEi+ae+1UIFncraW7ptUey7qHFJylpHWWWvE+GTwsg2G50i0FvFj jolheiser@jolheiser''
];
users.users = {
"${username}" = {
extraGroups = ["wheel" "docker" "storage"];
isNormalUser = true;
openssh.authorizedKeys.keys = [
key
];
};
"root".openssh.authorizedKeys.keys = [key];
};
system.stateVersion = "22.11";

Binary file not shown.