Update 'nixos-infect'

chore: Use master branch of NixOS config
fix: Defaults not being set
2023-07-18 13:11:25 +03:00 · 2023-03-17 14:08:43 +03:00 · 2023-02-08 16:27:20 +03:00 · 2023-01-17 17:10:40 +04:00 · 2022-11-16 11:10:38 +03:00 · 2022-11-11 05:08:43 +02:00
1 changed files with 37 additions and 12 deletions
--- a/49
+++ b/49
@ -7,10 +7,18 @@ set -e -o pipefail
 makeConf() {
  # Skip everything if main config already present
  [[ -e /etc/nixos/configuration.nix ]] && return 0
-  if [[ $PASSWORD == null ]]; then
+  if [[ -z $PASSWORD ]]; then
      export PASSWORD=$(printf $ENCODED_PASSWORD | base64 --decode)
  fi

+  if [[ -z $DNS_PROVIDER_TYPE ]]; then
+      export DNS_PROVIDER_TYPE='CLOUDFLARE'
+  fi
+
+  if [[ -z $STAGING_ACME ]]; then
+      export STAGING_ACME='false'
+  fi
+
  export ESCAPED_PASSWORD=$(printf $ENCODED_PASSWORD | base64 --decode | jq -Rs .)
  export HASHED_PASSWORD=$( mkpasswd -m sha-512 "$PASSWORD" )

@ -27,6 +35,7 @@ makeConf() {
      && break
  done
  local network_import=""
+  [[ -n "$doNetConf" ]] && network_import="./networking.nix # generated at runtime by nixos-infect"

  cat > /etc/nixos/userdata/userdata.json << EOF
 {
@ -34,17 +43,23 @@ makeConf() {
        "token": "$API_TOKEN",
        "skippedMigrations": ["migrate_to_selfprivacy_channel", "mount_volume"]
    },
-    "backblaze": {
+    "backup": {
+        "provider": "BACKBLAZE",
        "accountId": "$BACKBLAZE_KEY_ID",
        "accountKey": "$BACKBLAZE_ACCOUNT_KEY",
        "bucket": "$BACKBLAZE_BUCKET_NAME"
    },
    "bitwarden": {
        "enable": true,
-        "location": "sdb"
+        "location": "sda"
    },
-    "cloudflare": {
-        "apiKey": "$CF_TOKEN"
+    "dns": {
+        "provider": "$DNS_PROVIDER_TYPE",
+        "apiKey": "$CF_TOKEN",
+        "useStagingACME": $STAGING_ACME
+    },
+    "server": {
+        "provider": "DIGITALOCEAN"
    },
    "databasePassword": "$DB_PASSWORD",
    "domain": "$DOMAIN",
@ -54,11 +69,11 @@ makeConf() {
        "enable": true,
        "adminPassword": $ESCAPED_PASSWORD,
        "databasePassword": $ESCAPED_PASSWORD,
-        "location": "sdb"
+        "location": "sda"
    },
    "gitea": {
        "enable": true,
-        "location": "sdb"
+        "location": "sda"
    },
    "jitsi": {
        "enable": true
@ -68,19 +83,26 @@ makeConf() {
    },
    "pleroma": {
        "enable": false,
-        "location": "sdb"
+        "location": "sda"
    },
    "timezone": "Europe/Uzhgorod",
    "resticPassword": $ESCAPED_PASSWORD,
    "username": "$LUSER",
    "volumes": [
      {
-        "device": "/dev/sdb",
-        "mountPoint": "/volumes/sdb",
+        "device": "/dev/sda",
+        "mountPoint": "/volumes/sda",
        "fsType": "ext4"
     }
    ],
-    "useBinds": true
+    "useBinds": true,
+    "ssh": {
+        "rootKeys": [
+            "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICQmWNN9YccQecQUOB0n4jYH76gEgSAs4d66eFUZoobt inex@inex-pc",
+            "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMNkUTqKof4lWaddRzsrQz+huo4BLJc/2EGmIqieqJbP naiji@laptop",
+            "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIFuVzlSfuZREjXQmQgOat+NlFrCUhfjioAIfs6DQzhc+AAAABHNzaDo= yubi-A"
+        ]
+    }
 }
 EOF
  chmod 0600 /etc/nixos/userdata/userdata.json
@ -106,7 +128,10 @@ EOF
  cat > /etc/nixos/hardware-configuration.nix << EOF
 { modulesPath, ... }:
 {
-  imports = [ (modulesPath + "/profiles/qemu-guest.nix") ];
+  imports = [
+    (modulesPath + "/profiles/qemu-guest.nix")
+    $network_import
+  ];
 $bootcfg
  boot.initrd.kernelModules = [ "nvme" ];
  fileSystems."/" = { device = "$rootfsdev"; fsType = "$rootfstype"; };
Author	SHA1	Message	Date
NaiJi ✨	71def7ddc6	Update 'nixos-infect'	2023-07-18 13:11:25 +03:00
Inex Code	83a65bea88	chore: Use master branch of NixOS config	2023-03-17 14:08:43 +03:00
Inex Code	fec11f8a7a	fix: Defaults not being set	2023-02-08 16:27:20 +03:00
NaiJi ✨	512ff0a218	feat: Implement dns provider type variable for infecting	2023-01-17 17:10:40 +04:00
Inex Code	389e23a161	feat: Add support for staging ACME	2022-11-16 11:10:38 +03:00
NaiJi ✨	ccb337f6d4	chore: Remove temporary cloning branch and change back to api-redis	2022-11-11 05:08:43 +02:00
Inex Code	6a1bc092a6	fix: Use DigitalOcean's volume	2022-11-09 23:16:30 +03:00
NaiJi ✨	f8cae86a64	chore!: Make infect pull configuration from custom temp branch Make sure this commit is never merged into master, because the branch contains developers' public keys	2022-11-09 20:29:34 +02:00
Inex Code	f526e00585	fix: use sda for all services	2022-11-08 03:32:23 +03:00
Inex Code	2b4bb3f793	fix: remove a volume from DO for now	2022-11-08 03:30:55 +03:00
Inex Code	5f72978a16	fix: userdata json	2022-11-08 02:33:15 +03:00
Inex Code	c8b85bffc4	chore: use api-redis branch of config for Digital Ocean	2022-11-08 01:45:36 +03:00
Inex Code	7af1730fa3	fix: Import networking.nix when on Digital ocean	2022-11-08 01:37:28 +03:00