commit 96d3b3ac9822d109c7a8c84fab081cf621ffe0e7 · dunkirk.sh/dots

+37

.github/workflows/deploy.yaml

···

       1
       1
       +
       name: Deploy NixOS Configurations

     

       2
       2
       +
       

     

       3
       3
       +
       on:

     

       4
       4
       +
         push:

     

       5
       5
       +
           branches:

     

       6
       6
       +
             - main

     

       7
       7
       +
         workflow_dispatch:

     

       8
       8
       +
       

     

       9
       9
       +
       jobs:

     

       10
       10
       +
         deploy:

     

       11
       11
       +
           runs-on: ubuntu-latest

     

       12
       12
       +
           steps:

     

       13
       13
       +
             - uses: actions/checkout@v4

     

       14
       14
       +
             

     

       15
       15
       +
             - name: Install Nix

     

       16
       16
       +
               uses: DeterminateSystems/determinate-nix-action@main

     

       17
       17
       +
             

     

       18
       18
       +
             - name: Setup Tailscale

     

       19
       19
       +
               uses: tailscale/github-action@v3

     

       20
       20
       +
               with:

     

       21
       21
       +
                 oauth-client-id: ${{ secrets.TS_OAUTH_CLIENT_ID }}

     

       22
       22
       +
                 oauth-secret: ${{ secrets.TS_OAUTH_SECRET }}

     

       23
       23
       +
                 tags: tag:deploy

     

       24
       24
       +
                 use-cache: "true"

     

       25
       25
       +
             

     

       26
       26
       +
             - name: Configure SSH

     

       27
       27
       +
               run: |

     

       28
       28
       +
                 mkdir -p ~/.ssh

     

       29
       29
       +
                 echo "StrictHostKeyChecking accept-new" >> ~/.ssh/config

     

       30
       30
       +
             

     

       31
       31
       +
             - name: Deploy all configurations

     

       32
       32
       +
               run: |

     

       33
       33
       +
                 nix run github:serokell/deploy-rs -- \

     

       34
       34
       +
                   --skip-checks \

     

       35
       35
       +
                   --remote-build \

     

       36
       36
       +
                   --ssh-opts="-o StrictHostKeyChecking=accept-new" \

     

       37
       37
       +
                   .

+77 -5

flake.lock

···

       144
       144
        
               "type": "github"

     

       145
       145
        
             }

     

       146
       146
        
           },

     

       147
       147
       +
           "deploy-rs": {

     

       148
       148
       +
             "inputs": {

     

       149
       149
       +
               "flake-compat": "flake-compat",

     

       150
       150
       +
               "nixpkgs": [

     

       151
       151
       +
                 "nixpkgs"

     

       152
       152
       +
               ],

     

       153
       153
       +
               "utils": "utils"

     

       154
       154
       +
             },

     

       155
       155
       +
             "locked": {

     

       156
       156
       +
               "lastModified": 1762286984,

     

       157
       157
       +
               "narHash": "sha256-9I2H9x5We6Pl+DBYHjR1s3UT8wgwcpAH03kn9CqtdQc=",

     

       158
       158
       +
               "owner": "serokell",

     

       159
       159
       +
               "repo": "deploy-rs",

     

       160
       160
       +
               "rev": "9c870f63e28ec1e83305f7f6cb73c941e699f74f",

     

       161
       161
       +
               "type": "github"

     

       162
       162
       +
             },

     

       163
       163
       +
             "original": {

     

       164
       164
       +
               "owner": "serokell",

     

       165
       165
       +
               "repo": "deploy-rs",

     

       166
       166
       +
               "type": "github"

     

       167
       167
       +
             }

     

       168
       168
       +
           },

     

       147
       169
        
           "disko": {

     

       148
       170
        
             "inputs": {

     

       149
       171
        
               "nixpkgs": [

     
···

       165
       187
        
             }

     

       166
       188
        
           },

     

       167
       189
        
           "flake-compat": {

     

       190
       190
       +
             "flake": false,

     

       191
       191
       +
             "locked": {

     

       192
       192
       +
               "lastModified": 1733328505,

     

       193
       193
       +
               "narHash": "sha256-NeCCThCEP3eCl2l/+27kNNK7QrwZB1IJCrXfrbv5oqU=",

     

       194
       194
       +
               "owner": "edolstra",

     

       195
       195
       +
               "repo": "flake-compat",

     

       196
       196
       +
               "rev": "ff81ac966bb2cae68946d5ed5fc4994f96d0ffec",

     

       197
       197
       +
               "type": "github"

     

       198
       198
       +
             },

     

       199
       199
       +
             "original": {

     

       200
       200
       +
               "owner": "edolstra",

     

       201
       201
       +
               "repo": "flake-compat",

     

       202
       202
       +
               "type": "github"

     

       203
       203
       +
             }

     

       204
       204
       +
           },

     

       205
       205
       +
           "flake-compat_2": {

     

       168
       206
        
             "flake": false,

     

       169
       207
        
             "locked": {

     

       170
       208
        
               "lastModified": 1696426674,

     
···

       279
       317
        
           },

     

       280
       318
        
           "flake-utils_3": {

     

       281
       319
        
             "inputs": {

     

       282
       282
       -
               "systems": "systems_4"

     

       320
       320
       +
               "systems": "systems_5"

     

       283
       321
        
             },

     

       284
       322
        
             "locked": {

     

       285
       323
        
               "lastModified": 1731533236,

     
···

       297
       335
        
           },

     

       298
       336
        
           "flake-utils_4": {

     

       299
       337
        
             "inputs": {

     

       300
       300
       -
               "systems": "systems_5"

     

       338
       338
       +
               "systems": "systems_6"

     

       301
       339
        
             },

     

       302
       340
        
             "locked": {

     

       303
       341
        
               "lastModified": 1731533236,

     
···

       315
       353
        
           },

     

       316
       354
        
           "flake-utils_5": {

     

       317
       355
        
             "inputs": {

     

       318
       318
       -
               "systems": "systems_6"

     

       356
       356
       +
               "systems": "systems_7"

     

       319
       357
        
             },

     

       320
       358
        
             "locked": {

     

       321
       359
        
               "lastModified": 1731533236,

     
···

       847
       885
        
           },

     

       848
       886
        
           "pre-commit-hooks": {

     

       849
       887
        
             "inputs": {

     

       850
       850
       -
               "flake-compat": "flake-compat",

     

       888
       888
       +
               "flake-compat": "flake-compat_2",

     

       851
       889
        
               "gitignore": "gitignore",

     

       852
       890
        
               "nixpkgs": "nixpkgs_7"

     

       853
       891
        
             },

     
···

       873
       911
        
               "cedarlogic": "cedarlogic",

     

       874
       912
        
               "claude-desktop": "claude-desktop",

     

       875
       913
        
               "ctfd-alerts": "ctfd-alerts",

     

       914
       914
       +
               "deploy-rs": "deploy-rs",

     

       876
       915
        
               "disko": "disko",

     

       877
       916
        
               "flare": "flare",

     

       878
       917
        
               "frc-nix": "frc-nix",

     
···

       939
       978
        
               "nixpkgs": [

     

       940
       979
        
                 "nixpkgs"

     

       941
       980
        
               ],

     

       942
       942
       -
               "systems": "systems_7"

     

       981
       981
       +
               "systems": "systems_8"

     

       943
       982
        
             },

     

       944
       983
        
             "locked": {

     

       945
       984
        
               "lastModified": 1763985453,

     
···

       1060
       1099
        
               "type": "github"

     

       1061
       1100
        
             }

     

       1062
       1101
        
           },

     

       1102
       1102
       +
           "systems_8": {

     

       1103
       1103
       +
             "locked": {

     

       1104
       1104
       +
               "lastModified": 1681028828,

     

       1105
       1105
       +
               "narHash": "sha256-Vy1rq5AaRuLzOxct8nz4T6wlgyUR7zLU309k9mBC768=",

     

       1106
       1106
       +
               "owner": "nix-systems",

     

       1107
       1107
       +
               "repo": "default",

     

       1108
       1108
       +
               "rev": "da67096a3b9bf56a91d16901293e51ba5b49a27e",

     

       1109
       1109
       +
               "type": "github"

     

       1110
       1110
       +
             },

     

       1111
       1111
       +
             "original": {

     

       1112
       1112
       +
               "owner": "nix-systems",

     

       1113
       1113
       +
               "repo": "default",

     

       1114
       1114
       +
               "type": "github"

     

       1115
       1115
       +
             }

     

       1116
       1116
       +
           },

     

       1063
       1117
        
           "terminal-wakatime": {

     

       1064
       1118
        
             "inputs": {

     

       1065
       1119
        
               "nixpkgs": [

     
···

       1077
       1131
        
             "original": {

     

       1078
       1132
        
               "owner": "taciturnaxolotl",

     

       1079
       1133
        
               "repo": "terminal-wakatime",

     

       1134
       1134
       +
               "type": "github"

     

       1135
       1135
       +
             }

     

       1136
       1136
       +
           },

     

       1137
       1137
       +
           "utils": {

     

       1138
       1138
       +
             "inputs": {

     

       1139
       1139
       +
               "systems": "systems_4"

     

       1140
       1140
       +
             },

     

       1141
       1141
       +
             "locked": {

     

       1142
       1142
       +
               "lastModified": 1731533236,

     

       1143
       1143
       +
               "narHash": "sha256-l0KFg5HjrsfsO/JpG+r7fRrqm12kzFHyUHqHCVpMMbI=",

     

       1144
       1144
       +
               "owner": "numtide",

     

       1145
       1145
       +
               "repo": "flake-utils",

     

       1146
       1146
       +
               "rev": "11707dc2f618dd54ca8739b309ec4fc024de578b",

     

       1147
       1147
       +
               "type": "github"

     

       1148
       1148
       +
             },

     

       1149
       1149
       +
             "original": {

     

       1150
       1150
       +
               "owner": "numtide",

     

       1151
       1151
       +
               "repo": "flake-utils",

     

       1080
       1152
        
               "type": "github"

     

       1081
       1153
        
             }

     

       1082
       1154
        
           },

+48

flake.nix

···

       94
       94
        
             url = "github:mrnossiom/wakatime-ls";

     

       95
       95
        
             inputs.nixpkgs.follows = "nixpkgs";

     

       96
       96
        
           };

     

       97
       97
       +
       

     

       98
       98
       +
           deploy-rs = {

     

       99
       99
       +
             url = "github:serokell/deploy-rs";

     

       100
       100
       +
             inputs.nixpkgs.follows = "nixpkgs";

     

       101
       101
       +
           };

     

       97
       102
        
         };

     

       98
       103
        
       

     

       99
       104
        
         outputs =

     
···

       105
       110
        
             home-manager,

     

       106
       111
        
             nur,

     

       107
       112
        
             nix-darwin,

     

       113
       113
       +
             deploy-rs,

     

       108
       114
        
             ...

     

       109
       115
        
           }@inputs:

     

       110
       116
        
           let

     
···

       244
       250
        
       

     

       245
       251
        
             formatter.x86_64-linux = nixpkgs.legacyPackages.x86_64-linux.nixfmt-tree;

     

       246
       252
        
             formatter.aarch64-darwin = nixpkgs.legacyPackages.aarch64-darwin.nixfmt-tree;

     

       253
       253
       +
       

     

       254
       254
       +
             # Deploy-rs configurations

     

       255
       255
       +
             deploy.nodes = {

     

       256
       256
       +
               # NixOS servers

     

       257
       257
       +
               prattle = {

     

       258
       258
       +
                 hostname = "prattle";

     

       259
       259
       +
                 profiles.system = {

     

       260
       260
       +
                   sshUser = "kierank";

     

       261
       261
       +
                   user = "root";

     

       262
       262
       +
                   path = deploy-rs.lib.x86_64-linux.activate.nixos self.nixosConfigurations.prattle;

     

       263
       263
       +
                 };

     

       264
       264
       +
               };

     

       265
       265
       +
       

     

       266
       266
       +
               terebithia = {

     

       267
       267
       +
                 hostname = "terebithia";

     

       268
       268
       +
                 profiles.system = {

     

       269
       269
       +
                   sshUser = "kierank";

     

       270
       270
       +
                   user = "root";

     

       271
       271
       +
                   path = deploy-rs.lib.aarch64-linux.activate.nixos self.nixosConfigurations.terebithia;

     

       272
       272
       +
                 };

     

       273
       273
       +
               };

     

       274
       274
       +
       

     

       275
       275
       +
               # Home-manager machines

     

       276
       276
       +
               nest = {

     

       277
       277
       +
                 hostname = "nest";

     

       278
       278
       +
                 profiles.home = {

     

       279
       279
       +
                   user = "kierank";

     

       280
       280
       +
                   path = deploy-rs.lib.x86_64-linux.activate.home-manager self.homeConfigurations.nest;

     

       281
       281
       +
                 };

     

       282
       282
       +
               };

     

       283
       283
       +
       

     

       284
       284
       +
               ember = {

     

       285
       285
       +
                 hostname = "ember";

     

       286
       286
       +
                 profiles.home = {

     

       287
       287
       +
                   user = "kierank";

     

       288
       288
       +
                   path = deploy-rs.lib.x86_64-linux.activate.home-manager self.homeConfigurations.ember;

     

       289
       289
       +
                 };

     

       290
       290
       +
               };

     

       291
       291
       +
             };

     

       292
       292
       +
       

     

       293
       293
       +
             # Validation checks

     

       294
       294
       +
             checks = builtins.mapAttrs (system: deployLib: deployLib.deployChecks self.deploy) deploy-rs.lib;

     

       247
       295
        
           };

     

       248
       296
        
       }