dotfiles/flake.nix

{
  description = "My Nix Configuration";

  inputs = {
    nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable";

    home-manager.url = "github:nix-community/home-manager/master";
    home-manager.inputs.nixpkgs.follows = "nixpkgs";

    nixos-generators.url = "github:nix-community/nixos-generators";
    nixos-generators.inputs.nixpkgs.follows = "nixpkgs";

    # For some reason updating causes an error saying /nix/store/secrets can't
    # be access in pure mode (doesn't play nice with agenix)
    snowfall-lib.url = "github:snowfallorg/lib/92803a029b5314d4436a8d9311d8707b71d9f0b6";
    snowfall-lib.inputs.nixpkgs.follows = "nixpkgs";

    deploy-rs.url = "github:serokell/deploy-rs";
    deploy-rs.inputs.nixpkgs.follows = "nixpkgs";

    agenix.url = "github:ryantm/agenix";
    agenix.inputs.nixpkgs.follows = "nixpkgs";
    agenix.inputs.home-manager.follows = "home-manager";
    agenix.inputs.darwin.follows = "";

    nixos-hardware.url = "github:NixOS/nixos-hardware/master";
  };

  outputs = inputs:
    inputs.snowfall-lib.mkFlake {
      inherit inputs;
      src = ./.;

      # overlay-package-namespace = "aa";
      snowfall.namespace = "aa";

      channels-config.allowUnfree = true;
      # TODO: This should be temporary.
      # See here:
      # https://github.com/NixOS/nixpkgs/issues/269713
      # https://github.com/project-chip/connectedhomeip/issues/25688
      channels-config.permittedInsecurePackages = [
        "openssl-1.1.1w"
      ];

      systems.modules.nixos = with inputs; [
        agenix.nixosModules.default
        home-manager.nixosModules.home-manager
      ];

      deploy.nodes = {
        node = {
          hostname = "node";
          profiles.system = {
            user = "root";
            sshUser = "alejandro";
            path = inputs.deploy-rs.lib.x86_64-linux.activate.nixos inputs.self.nixosConfigurations.node;
            sshOpts = ["-A"];
          };
        };

        pi4 = let
          system = "aarch64-linux";
          pkgs = import inputs.nixpkgs {inherit system;};
          deployPkgs = import inputs.nixpkgs {
            inherit system;
            overlays = [
              inputs.deploy-rs.overlay
              (self: super: {
                deploy-rs = {
                  inherit (pkgs) deploy-rs;
                  lib = inputs.deploy-rs.lib;
                };
              })
            ];
          };
        in {
          hostname = "pi4";
          profiles.system = {
            user = "root";
            sshUser = "alejandro";
            path = deployPkgs.deploy-rs.lib.aarch64-linux.activate.nixos inputs.self.nixosConfigurations.pi4;
            # Usually deploy from an x86_64 machine and don't want to bother
            # trying to build an aarch64 derivation
            remoteBuild = true;
          };
        };
      };

      # TODO: Re-enable this when I figure out how to prevent needing to build
      # dependencies for architectures other than the host machine
      # checks = builtins.mapAttrs (system: deployLib: deployLib.deployChecks inputs.self.deploy) inputs.deploy-rs.lib;

      hydraJobs = let
        systems_to_build = [
          "gospel"
          "node"
          "carbon"
        ];
      in {
        # Only have a builder for x86_64-linux atm
        packages = inputs.self.packages.x86_64-linux;

        systems = inputs.nixpkgs.lib.attrsets.genAttrs systems_to_build (
          name:
            inputs.self.nixosConfigurations."${name}".config.system.build.toplevel
        );

        droplets.proxy = inputs.self.doConfigurations.proxy;
      };
    };
}
Added nix config 2022-09-18 19:42:30 +00:00			`{`
			`description = "My Nix Configuration";`

			`inputs = {`
Started experimenting with neovim 2022-09-25 18:01:06 +00:00			`nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable";`
wip 2023-03-12 03:59:11 +00:00
Updated to home manager master (22.11) Using nixpkgs unstable so updating home manager to track more closely with that (ran into an issue building). 2022-11-01 00:18:11 +00:00			`home-manager.url = "github:nix-community/home-manager/master";`
Added nix config 2022-09-18 19:42:30 +00:00			`home-manager.inputs.nixpkgs.follows = "nixpkgs";`

wip 2023-03-12 03:59:11 +00:00			`nixos-generators.url = "github:nix-community/nixos-generators";`
			`nixos-generators.inputs.nixpkgs.follows = "nixpkgs";`
Updated to home manager master (22.11) Using nixpkgs unstable so updating home manager to track more closely with that (ran into an issue building). 2022-11-01 00:18:11 +00:00
Updated Config had to change to deal with breakage 2024-05-27 04:56:59 +00:00			`# For some reason updating causes an error saying /nix/store/secrets can't`
			`# be access in pure mode (doesn't play nice with agenix)`
			`snowfall-lib.url = "github:snowfallorg/lib/92803a029b5314d4436a8d9311d8707b71d9f0b6";`
wip 2023-03-12 03:59:11 +00:00			`snowfall-lib.inputs.nixpkgs.follows = "nixpkgs";`
Configured remote deployments Also includes some misc fixes for bugs I ran into along the way. 2023-04-16 17:07:42 +00:00
			`deploy-rs.url = "github:serokell/deploy-rs";`
			`deploy-rs.inputs.nixpkgs.follows = "nixpkgs";`
Added adguardhome service 2023-07-09 15:24:54 +00:00
			`agenix.url = "github:ryantm/agenix";`
			`agenix.inputs.nixpkgs.follows = "nixpkgs";`
			`agenix.inputs.home-manager.follows = "home-manager";`
			`agenix.inputs.darwin.follows = "";`
Added pi4 configuration 2023-09-03 00:12:21 +00:00
			`nixos-hardware.url = "github:NixOS/nixos-hardware/master";`
wip 2023-03-12 03:59:11 +00:00			`};`
Added nix config 2022-09-18 19:42:30 +00:00
Updated lockfile and pinned snowfall lib 2023-09-17 15:57:41 +00:00			`outputs = inputs:`
			`inputs.snowfall-lib.mkFlake {`
wip 2023-03-12 03:59:11 +00:00			`inherit inputs;`
			`src = ./.;`
Updated lockfile and pinned snowfall lib 2023-09-17 15:57:41 +00:00
Upgraded snowfall lib 2023-10-05 03:36:21 +00:00			`# overlay-package-namespace = "aa";`
			`snowfall.namespace = "aa";`
wip 2023-03-12 03:59:11 +00:00
			`channels-config.allowUnfree = true;`
Added adaptive lighting 2024-01-13 18:00:15 +00:00			`# TODO: This should be temporary.`
			`# See here:`
			`# https://github.com/NixOS/nixpkgs/issues/269713`
			`# https://github.com/project-chip/connectedhomeip/issues/25688`
			`channels-config.permittedInsecurePackages = [`
			`"openssl-1.1.1w"`
			`];`
wip 2023-03-12 03:59:11 +00:00
Upgraded snowfall lib 2023-10-05 03:36:21 +00:00			`systems.modules.nixos = with inputs; [`
Added adguardhome service 2023-07-09 15:24:54 +00:00			`agenix.nixosModules.default`
Added pi4 configuration 2023-09-03 00:12:21 +00:00			`home-manager.nixosModules.home-manager`
wip 2023-03-12 03:59:11 +00:00			`];`

Added pi4 configuration 2023-09-03 00:12:21 +00:00			`deploy.nodes = {`
			`node = {`
			`hostname = "node";`
			`profiles.system = {`
			`user = "root";`
			`sshUser = "alejandro";`
			`path = inputs.deploy-rs.lib.x86_64-linux.activate.nixos inputs.self.nixosConfigurations.node;`
			`sshOpts = ["-A"];`
			`};`
			`};`

			`pi4 = let`
			`system = "aarch64-linux";`
			`pkgs = import inputs.nixpkgs {inherit system;};`
			`deployPkgs = import inputs.nixpkgs {`
			`inherit system;`
			`overlays = [`
			`inputs.deploy-rs.overlay`
			`(self: super: {`
			`deploy-rs = {`
			`inherit (pkgs) deploy-rs;`
			`lib = inputs.deploy-rs.lib;`
			`};`
			`})`
			`];`
			`};`
			`in {`
			`hostname = "pi4";`
			`profiles.system = {`
			`user = "root";`
			`sshUser = "alejandro";`
			`path = deployPkgs.deploy-rs.lib.aarch64-linux.activate.nixos inputs.self.nixosConfigurations.pi4;`
Added node exporters on more machines 2023-09-10 16:20:11 +00:00			`# Usually deploy from an x86_64 machine and don't want to bother`
			`# trying to build an aarch64 derivation`
			`remoteBuild = true;`
Added pi4 configuration 2023-09-03 00:12:21 +00:00			`};`
wip 2023-03-12 03:59:11 +00:00			`};`
Added nix config 2022-09-18 19:42:30 +00:00			`};`
Configured remote deployments Also includes some misc fixes for bugs I ran into along the way. 2023-04-16 17:07:42 +00:00
Added pi4 configuration 2023-09-03 00:12:21 +00:00			`# TODO: Re-enable this when I figure out how to prevent needing to build`
			`# dependencies for architectures other than the host machine`
			`# checks = builtins.mapAttrs (system: deployLib: deployLib.deployChecks inputs.self.deploy) inputs.deploy-rs.lib;`
Added hydra module 2024-03-02 18:06:18 +00:00
Configured x86_64-linux to be built by hydra 2024-03-03 01:48:28 +00:00			`hydraJobs = let`
			`systems_to_build = [`
			`"gospel"`
			`"node"`
			`"carbon"`
			`];`
			`in {`
Only builds x86_64-linux packages 2024-03-03 02:09:43 +00:00			`# Only have a builder for x86_64-linux atm`
			`packages = inputs.self.packages.x86_64-linux;`
Testing hydrajobs 2024-03-03 01:17:04 +00:00
Configured x86_64-linux to be built by hydra 2024-03-03 01:48:28 +00:00			`systems = inputs.nixpkgs.lib.attrsets.genAttrs systems_to_build (`
			`name:`
			`inputs.self.nixosConfigurations."${name}".config.system.build.toplevel`
			`);`
Worked around issue with failing DO image builds 2024-05-27 15:29:51 +00:00
			`droplets.proxy = inputs.self.doConfigurations.proxy;`
Added hydra module 2024-03-02 18:06:18 +00:00			`};`
Added nix config 2022-09-18 19:42:30 +00:00			`};`
			`}`