commit 99c916dd8eef8e63a54defe1eab0b821add4392f · pyrox.dev/nixpkgs

+9 -5

nixos/modules/services/networking/nix-serve.nix

···

       37
       37
        
                 nix-store --generate-binary-cache-key key-name secret-key-file public-key-file

     

       38
       38
        
                 ```

     

       39
       39
        
       

     

       40
       40
       -
                 Make sure user `nix-serve` has read access to the private key file.

     

       41
       41
       -
       

     

       42
       40
        
                 For more details see <citerefentry><refentrytitle>nix-store</refentrytitle><manvolnum>1</manvolnum></citerefentry>.

     

       43
       41
        
               '';

     

       44
       42
        
             };

     
···

       61
       59
        
       

     

       62
       60
        
             path = [ config.nix.package.out pkgs.bzip2.bin ];

     

       63
       61
        
             environment.NIX_REMOTE = "daemon";

     

       64
       64
       -
             environment.NIX_SECRET_KEY_FILE = cfg.secretKeyFile;

     

       62
       62
       +
       

     

       63
       63
       +
             script = ''

     

       64
       64
       +
               ${lib.optionalString (cfg.secretKeyFile != null) ''

     

       65
       65
       +
                 export NIX_SECRET_KEY_FILE="$CREDENTIALS_DIRECTORY/NIX_SECRET_KEY_FILE"

     

       66
       66
       +
               ''}

     

       67
       67
       +
               exec ${pkgs.nix-serve}/bin/nix-serve --listen ${cfg.bindAddress}:${toString cfg.port} ${cfg.extraParams}

     

       68
       68
       +
             '';

     

       65
       69
        
       

     

       66
       70
        
             serviceConfig = {

     

       67
       71
        
               Restart = "always";

     

       68
       72
        
               RestartSec = "5s";

     

       69
       69
       -
               ExecStart = "${pkgs.nix-serve}/bin/nix-serve " +

     

       70
       70
       -
                 "--listen ${cfg.bindAddress}:${toString cfg.port} ${cfg.extraParams}";

     

       71
       73
        
               User = "nix-serve";

     

       72
       74
        
               Group = "nix-serve";

     

       73
       75
        
               DynamicUser = true;

     

       76
       76
       +
               LoadCredential = lib.optionalString (cfg.secretKeyFile != null)

     

       77
       77
       +
                 "NIX_SECRET_KEY_FILE:${cfg.secretKeyFile}";

     

       74
       78
        
             };

     

       75
       79
        
           };

     

       76
       80
        
         };

+2 -2

nixos/tests/all-tests.nix

···

       315
       315
        
         nginx-sso = handleTest ./nginx-sso.nix {};

     

       316
       316
        
         nginx-variants = handleTest ./nginx-variants.nix {};

     

       317
       317
        
         nitter = handleTest ./nitter.nix {};

     

       318
       318
       -
         nix-serve = handleTest ./nix-ssh-serve.nix {};

     

       319
       319
       -
         nix-ssh-serve = handleTest ./nix-ssh-serve.nix {};

     

       318
       318
       +
         nix-serve = handleTest ./nix-serve.nix {};

     

       319
       319
       +
         nix-serve-ssh = handleTest ./nix-serve-ssh.nix {};

     

       320
       320
        
         nixops = handleTest ./nixops/default.nix {};

     

       321
       321
        
         nixos-generate-config = handleTest ./nixos-generate-config.nix {};

     

       322
       322
        
         node-red = handleTest ./node-red.nix {};

+1 -1

nixos/tests/nix-ssh-serve.nix nixos/tests/nix-serve-ssh.nix

···

       35
       35
        
       

     

       36
       36
        
              client.fail("diff /root/other-store$(cat mach-id-path) /etc/machine-id")

     

       37
       37
        
              # Currently due to shared store this is a noop :(

     

       38
       38
       -
              client.succeed("nix copy --to ssh-ng://nix-ssh@server $(cat mach-id-path)")

     

       38
       38
       +
              client.succeed("nix copy --experimental-features 'nix-command' --to ssh-ng://nix-ssh@server $(cat mach-id-path)")

     

       39
       39
        
              client.succeed(

     

       40
       40
        
                  "nix-store --realise $(cat mach-id-path) --store /root/other-store --substituters ssh-ng://nix-ssh@server"

     

       41
       41
        
              )

+4 -1

pkgs/tools/package-management/nix-serve/default.nix

···

       37
       37
        
                       --add-flags $out/libexec/nix-serve/nix-serve.psgi

     

       38
       38
        
         '';

     

       39
       39
        
       

     

       40
       40
       -
         passthru.tests.nix-serve = nixosTests.nix-serve;

     

       40
       40
       +
         passthru.tests = {

     

       41
       41
       +
           nix-serve = nixosTests.nix-serve;

     

       42
       42
       +
           nix-serve-ssh = nixosTests.nix-serve-ssh;

     

       43
       43
       +
         };

     

       41
       44
        
       

     

       42
       45
        
         meta = {

     

       43
       46
        
           homepage = "https://github.com/edolstra/nix-serve";