nix-dotfiles/flake.nix

{
  description = "NixOS configuration for RAD-Development Servers";

  inputs = {
    nixpkgs.url = "github:nixos/nixpkgs/nixos-unstable";
    nixos-hardware.url = "github:NixOS/nixos-hardware/master";

    nixos-modules = {
      url = "github:SuperSandro2000/nixos-modules";
      inputs.nixpkgs-lib.follows = "nixpkgs";
    };

    home-manager = {
      url = "github:nix-community/home-manager";
      inputs.nixpkgs.follows = "nixpkgs";
    };

    sops-nix = {
      url = "github:Mic92/sops-nix";
      inputs = {
        nixpkgs.follows = "nixpkgs";
        nixpkgs-stable.follows = "nixpkgs";
      };
    };
  };

  outputs = { nixpkgs, nixos-hardware, nixos-modules, home-manager, sops-nix, ... }:
  let
    inherit (nixpkgs) lib;
    src = builtins.filterSource (path: type: type == "directory" || lib.hasSuffix ".nix" (baseNameOf path)) ./.;
    ls = dir: lib.attrNames (builtins.readDir (src + "/${dir}"));
    fileList = dir: map (file: ./. + "/${dir}/${file}") (ls dir);
  in {
    nixosConfigurations = let
      constructSystem = {
        hostname,
        system ? "x86_64-linux",
        modules ? [],
        users ? ["dennis"],
      }: lib.nixosSystem {
        inherit system;

        modules = [
          nixos-modules.nixosModule
          home-manager.nixosModules.home-manager
          sops-nix.nixosModules.sops
          ./systems/programs.nix
          ./systems/configuration.nix
          ./systems/${hostname}/hardware.nix
          ./systems/${hostname}/configuration.nix
          { config.networking.hostName = "${hostname}"; }
        ] ++ modules ++ fileList "modules"
        ++ map(user: { config, lib, pkgs, ... }@args: {
          users.users.${user} = import ./users/${user} (args // { name = "${user}"; });
          boot.initrd.network.ssh.authorizedKeys = config.users.users.${user}.openssh.authorizedKeys.keys;
          sops = {
            secrets."${user}/user-password" = {
              sopsFile = ./users/${user}/secrets.yaml;
              neededForUsers = true;
            };
          };
        }) users
        ++ map(user: { home-manager.users.${user} = import ./users/${user}/home.nix; }) users;
      };
    in {
      photon = constructSystem {
        hostname = "photon";
        users = [
          "alice"
          "dennis"
        ];
      };

      palatine-hill = constructSystem {
        hostname = "palatine-hill";
        users = [
          "alice"
          "dennis"
        ];
      };
    };

    devShell = lib.mapAttrs (system: sopsPkgs:
        with nixpkgs.legacyPackages.${system};
        mkShell {
          sopsPGPKeyDirs = [ "./keys" ];
          nativeBuildInputs = [
            apacheHttpd
            sopsPkgs.sops-import-keys-hook
          ];
        }
      ) sops-nix.packages;
  };
}
base configuration 2023-12-23 06:49:01 +01:00			`{`
add system palatine-hill 2023-12-23 07:39:10 +01:00			`description = "NixOS configuration for RAD-Development Servers";`
base configuration 2023-12-23 06:49:01 +01:00
			`inputs = {`
			`nixpkgs.url = "github:nixos/nixpkgs/nixos-unstable";`
add home-manager 2023-12-25 03:39:20 +01:00			`nixos-hardware.url = "github:NixOS/nixos-hardware/master";`
base configuration 2023-12-23 06:49:01 +01:00
switched modules to flakes 2023-12-24 18:48:52 +01:00			`nixos-modules = {`
			`url = "github:SuperSandro2000/nixos-modules";`
			`inputs.nixpkgs-lib.follows = "nixpkgs";`
			`};`

add home-manager 2023-12-25 03:39:20 +01:00			`home-manager = {`
			`url = "github:nix-community/home-manager";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`

base configuration 2023-12-23 06:49:01 +01:00			`sops-nix = {`
			`url = "github:Mic92/sops-nix";`
switched modules to flakes 2023-12-24 18:48:52 +01:00			`inputs = {`
			`nixpkgs.follows = "nixpkgs";`
			`nixpkgs-stable.follows = "nixpkgs";`
			`};`
base configuration 2023-12-23 06:49:01 +01:00			`};`
			`};`

add home-manager 2023-12-25 03:39:20 +01:00			`outputs = { nixpkgs, nixos-hardware, nixos-modules, home-manager, sops-nix, ... }:`
switched modules to flakes 2023-12-24 18:48:52 +01:00			`let`
			`inherit (nixpkgs) lib;`
first usable configuration 2023-12-24 20:09:35 +01:00			`src = builtins.filterSource (path: type: type == "directory" \|\| lib.hasSuffix ".nix" (baseNameOf path)) ./.;`
			`ls = dir: lib.attrNames (builtins.readDir (src + "/${dir}"));`
			`fileList = dir: map (file: ./. + "/${dir}/${file}") (ls dir);`
switched modules to flakes 2023-12-24 18:48:52 +01:00			`in {`
base configuration 2023-12-23 06:49:01 +01:00			`nixosConfigurations = let`
			`constructSystem = {`
			`hostname,`
			`system ? "x86_64-linux",`
			`modules ? [],`
add home-manager 2023-12-25 03:39:20 +01:00			`users ? ["dennis"],`
switched modules to flakes 2023-12-24 18:48:52 +01:00			`}: lib.nixosSystem {`
			`inherit system;`

base configuration 2023-12-23 06:49:01 +01:00			`modules = [`
switched modules to flakes 2023-12-24 18:48:52 +01:00			`nixos-modules.nixosModule`
add home-manager 2023-12-25 03:39:20 +01:00			`home-manager.nixosModules.home-manager`
base configuration 2023-12-23 06:49:01 +01:00			`sops-nix.nixosModules.sops`
switched modules to flakes 2023-12-24 18:48:52 +01:00			`./systems/programs.nix`
			`./systems/configuration.nix`
first usable configuration 2023-12-24 20:09:35 +01:00			`./systems/${hostname}/hardware.nix`
switched modules to flakes 2023-12-24 18:48:52 +01:00			`./systems/${hostname}/configuration.nix`
add home-manager 2023-12-25 03:39:20 +01:00			`{ config.networking.hostName = "${hostname}"; }`
			`] ++ modules ++ fileList "modules"`
			`++ map(user: { config, lib, pkgs, ... }@args: {`
			`users.users.${user} = import ./users/${user} (args // { name = "${user}"; });`
fix user public keys 2023-12-25 18:54:38 +01:00			`boot.initrd.network.ssh.authorizedKeys = config.users.users.${user}.openssh.authorizedKeys.keys;`
configure programs for photon 2023-12-26 19:06:02 +01:00			`sops = {`
			`secrets."${user}/user-password" = {`
			`sopsFile = ./users/${user}/secrets.yaml;`
			`neededForUsers = true;`
			`};`
			`};`
add home-manager 2023-12-25 03:39:20 +01:00			`}) users`
			`++ map(user: { home-manager.users.${user} = import ./users/${user}/home.nix; }) users;`
base configuration 2023-12-23 06:49:01 +01:00			`};`
			`in {`
			`photon = constructSystem {`
switched modules to flakes 2023-12-24 18:48:52 +01:00			`hostname = "photon";`
fix user public keys 2023-12-25 18:54:38 +01:00			`users = [`
			`"alice"`
			`"dennis"`
			`];`
base configuration 2023-12-23 06:49:01 +01:00			`};`
add system palatine-hill 2023-12-23 07:39:10 +01:00
			`palatine-hill = constructSystem {`
switched modules to flakes 2023-12-24 18:48:52 +01:00			`hostname = "palatine-hill";`
fix user public keys 2023-12-25 18:54:38 +01:00			`users = [`
			`"alice"`
			`"dennis"`
			`];`
add system palatine-hill 2023-12-23 07:39:10 +01:00			`};`
base configuration 2023-12-23 06:49:01 +01:00			`};`
configure programs for photon 2023-12-26 19:06:02 +01:00
			`devShell = lib.mapAttrs (system: sopsPkgs:`
			`with nixpkgs.legacyPackages.${system};`
			`mkShell {`
			`sopsPGPKeyDirs = [ "./keys" ];`
			`nativeBuildInputs = [`
			`apacheHttpd`
			`sopsPkgs.sops-import-keys-hook`
			`];`
			`}`
			`) sops-nix.packages;`
base configuration 2023-12-23 06:49:01 +01:00			`};`
			`}`