diff options
initial server config
Diffstat (limited to 'flake.nix')
| -rw-r--r-- | flake.nix | 106 |
1 files changed, 106 insertions, 0 deletions
diff --git a/flake.nix b/flake.nix new file mode 100644 index 0000000..36b6b3b --- /dev/null +++ b/flake.nix @@ -0,0 +1,106 @@ +{ + description = "Cybertrike.org"; + + inputs = { + nixinate.url = "github:matthewcroughan/nixinate"; + agenix.url = "github:ryantm/agenix"; + nixpkgs_unstable.url = "github:nixos/nixpkgs/nixos-unstable"; + nixpkgs.url = "github:nixos/nixpkgs/nixos-23.05"; + simple-nixos-mailserver.url = "gitlab:simple-nixos-mailserver/nixos-mailserver"; + }; + + outputs = inputs@{ self, nixpkgs, agenix, nixinate, nixpkgs_unstable, simple-nixos-mailserver }: + let + pkgs = nixpkgs.legacyPackages.x86_64-linux; + webroot = "${self}/webroot"; + in + { + formatter.x86_64-linux = pkgs.nixpkgs-fmt; + apps.x86_64-linux = (inputs.nixinate.nixinate.x86_64-linux inputs.self).nixinate; + devShell.x86_64-linux = + pkgs.mkShell { + buildInputs = with pkgs; [ figlet tmux ]; + shellHook = '' + # Session Name + session="project-env-sh" + + # Check if the session exists, discarding output + # We can check $? for the exit status (zero for success, non-zero for failure) + tmux has-session -t $session 2>/dev/null + + if [ $? != 0 ]; then + # Start New Session with our name + tmux new-session -d -s $session + + # Name first Window and start zsh + tmux rename-window -t 0 'Main' + tmux send-keys -t 'Main' 'nix flake show' C-m + tmux send-keys -t 'Main' 'clear' C-m + + # Create and setup pane for btop + tmux split-window -h + tmux rename-window 'btop' + tmux send-keys -t 'btop' 'ssh -t commander@193.16.42.36 btop' C-m + + tmux select-pane -t 0 + + # Create and setup pane for btop + tmux split-window -v + tmux rename-window 'ssh' + tmux send-keys -t 'ssh' 'ssh commander@193.16.42.36' C-m + + tmux select-pane -t 0 + fi + tmux attach-session -t $session''; + }; + nixosConfigurations = { + crash-over-burn-1 = nixpkgs.lib.nixosSystem { + system = "x86_64-linux"; + modules = [ + simple-nixos-mailserver.nixosModule + { + mailserver = { + fqdn = "mail.crashoverburn.com"; + domains = [ "mail.crashoverburn.com" "crashoverburn.com" ]; + enable = true; + # A list of all login accounts. To create the password hashes, use + # nix-shell -p mkpasswd --run 'mkpasswd -sm bcrypt' + loginAccounts = { + "crash@crashoverburn.com" = { + hashedPasswordFile = "${self}/password.file"; + aliases = [ "postmaster@mail.cybertrike.org" "overburn@cybertrike.org"]; + }; + }; + certificateScheme = "acme-nginx"; + }; + } + agenix.nixosModules.default + ./openstack.nix + (import ./website.nix { inherit webroot; }) + ./commander.nix + { + security.acme = { + acceptTerms = true; + defaults.email = "security@mail.cybertrike.org"; + }; + environment.systemPackages = [ + pkgs.btop + pkgs.tmux + pkgs.neovim + ]; + imports = [ + "${nixpkgs}/nixos/modules/virtualisation/openstack-config.nix" + ]; + _module.args.nixinate = { + host = "193.16.42.36"; + sshUser = "commander"; + substituteOnTarget = true; + hermetic = true; + buildOn = "local"; + }; + } + ]; + }; + }; + }; +} |