wiro.world / dotfiles
yep, more dotfiles
fork atom

fix: patch pds module to use pdsadmin

wiro.world 06d29853 3f1e155d

options
unified split
Changed files
+9 -10
Justfile
nixos
profiles
server.nix
secrets
default.nix
pds-env.age
-5
Justfile 
···

       
4

       
 

       
[linux]


     

       
5

       
 

       
switch PROFILE="":


     

       
6

       
 

       
	sudo nixos-rebuild switch --show-trace --flake .#{{PROFILE}}


     

       
7

       
-

       



     

       
8

       
 

       
[macos]


     

       
9

       
 

       
switch PROFILE="":


     

       
10

       
 

       
	darwin-rebuild switch --show-trace --flake .#{{PROFILE}}


     
···

       
12

       
 

       
[linux]


     

       
13

       
 

       
build PROFILE="":


     

       
14

       
 

       
	nixos-rebuild build --show-trace --flake .#{{PROFILE}}


     

       
15

       
-

       



     

       
16

       
 

       
[macos]


     

       
17

       
 

       
build PROFILE="":


     

       
18

       
 

       
	darwin-rebuild build --show-trace --flake .#{{PROFILE}}


     

       
19

       
-

       



     

       
20

       
-

       
check PROFILE="": (build PROFILE)


     

       
21

       
-

       
	@unlink result


     

       
22

       
 

       



     

       
23

       
 

       
home-build PROFILE:


     

       
24

       
 

       
	home-manager build --show-trace --flake .#{{PROFILE}}


     
···

       
4

       
 

       
[linux]


     

       
5

       
 

       
switch PROFILE="":


     

       
6

       
 

       
	sudo nixos-rebuild switch --show-trace --flake .#{{PROFILE}}


     

       

       

       
     

       
7

       
 

       
[macos]


     

       
8

       
 

       
switch PROFILE="":


     

       
9

       
 

       
	darwin-rebuild switch --show-trace --flake .#{{PROFILE}}


     
···

       
11

       
 

       
[linux]


     

       
12

       
 

       
build PROFILE="":


     

       
13

       
 

       
	nixos-rebuild build --show-trace --flake .#{{PROFILE}}


     

       

       

       
     

       
14

       
 

       
[macos]


     

       
15

       
 

       
build PROFILE="":


     

       
16

       
 

       
	darwin-rebuild build --show-trace --flake .#{{PROFILE}}


     

       

       

       
     

       

       

       
     

       

       

       
     

       
17

       
 

       



     

       
18

       
 

       
home-build PROFILE:


     

       
19

       
 

       
	home-manager build --show-trace --flake .#{{PROFILE}}
+6 -5
nixos/profiles/server.nix 
···

       
9

       
 

       



     

       
10

       
 

       
  all-secrets = import ../../secrets;


     

       
11

       
 

       



     

       

       

       
     

       

       

       
     

       

       

       
     

       
12

       
 

       
  ext-if = "eth0";


     

       
13

       
 

       
  external-ip = "91.99.55.74";


     

       
14

       
 

       
  external-netmask = 27;


     
···

       
28

       
 

       



     

       
29

       
 

       
    agenix.nixosModules.default


     

       
30

       
 

       



     

       
31

       
-

       
    "${nixpkgs-unstable}/nixos/modules/services/web-apps/pds.nix"


     

       
32

       
 

       
  ];


     

       
33

       
 

       



     

       
34

       
 

       
  config = {


     
···

       
79

       
 

       
    # TODO: switch to nightly channel


     

       
80

       
 

       
    services.pds = {


     

       
81

       
 

       
      enable = true;


     

       
82

       
-

       
      # TODO: not possible with current unstable module import


     

       
83

       
-

       
      pdsadmin.enable = false;


     

       
84

       
-

       
      package = upkgs.pds;


     

       
85

       
 

       



     

       
86

       
 

       
      settings = {


     

       
87

       
 

       
        PDS_HOSTNAME = "pds.wiro.world";


     

       
88

       
 

       
        PDS_PORT = pds-port;


     

       
89

       
-

       
        LOG_DESTINATION = "/etc/pds.log";


     

       

       

       
     

       
90

       
 

       
      };


     

       
91

       
 

       



     

       
92

       
 

       
      environmentFiles = [


     
···

       
9

       
 

       



     

       
10

       
 

       
  all-secrets = import ../../secrets;


     

       
11

       
 

       



     

       
12

       
+

       
  pds-unstable-module = import "${nixpkgs-unstable}/nixos/modules/services/web-apps/pds.nix";


     

       
13

       
+

       
  pds-patched-module = args: pds-unstable-module (args // { pkgs = upkgs; });


     

       
14

       
+

       



     

       
15

       
 

       
  ext-if = "eth0";


     

       
16

       
 

       
  external-ip = "91.99.55.74";


     

       
17

       
 

       
  external-netmask = 27;


     
···

       
31

       
 

       



     

       
32

       
 

       
    agenix.nixosModules.default


     

       
33

       
 

       



     

       
34

       
+

       
    pds-patched-module


     

       
35

       
 

       
  ];


     

       
36

       
 

       



     

       
37

       
 

       
  config = {


     
···

       
82

       
 

       
    # TODO: switch to nightly channel


     

       
83

       
 

       
    services.pds = {


     

       
84

       
 

       
      enable = true;


     

       

       

       
     

       

       

       
     

       

       

       
     

       
85

       
 

       



     

       
86

       
 

       
      settings = {


     

       
87

       
 

       
        PDS_HOSTNAME = "pds.wiro.world";


     

       
88

       
 

       
        PDS_PORT = pds-port;


     

       
89

       
+

       
        # is in systemd /tmp subfolder


     

       
90

       
+

       
        LOG_DESTINATION = "/tmp/pds.log";


     

       
91

       
 

       
      };


     

       
92

       
 

       



     

       
93

       
 

       
      environmentFiles = [
+3
secrets/default.nix 
···

       
12

       
 

       
  };


     

       
13

       
 

       



     

       
14

       
 

       
  deploy = {


     

       

       

       
     

       

       

       
     

       

       

       
     

       
15

       
 

       
    pds-config.file = ./pds-env.age;


     

       
16

       
 

       
  };


     

       
17

       
 

       



     
···

       
12

       
 

       
  };


     

       
13

       
 

       



     

       
14

       
 

       
  deploy = {


     

       
15

       
+

       
    # Defines `PDS_JWT_SECRET`, `PDS_ADMIN_PASSWORD`,


     

       
16

       
+

       
    # `PDS_PLC_ROTATION_KEY_K256_PRIVATE_KEY_HEX`, `PDS_EMAIL_SMTP_URL` and


     

       
17

       
+

       
    # `PDS_EMAIL_FROM_ADDRESS`


     

       
18

       
 

       
    pds-config.file = ./pds-env.age;


     

       
19

       
 

       
  };


     

       
20
secrets/pds-env.age

This is a binary file and will not be displayed.