coder-templates/image.nix

{
  lib,
  pkgs,
  ...
}:
pkgs.dockerTools.buildLayeredImage {
  name = "nix-coder";
  tag = "latest";

  contents = pkgs.buildEnv {
    name = "image-root";
    paths = [
      pkgs.bash
      pkgs.bashInteractive
      pkgs.nix
      pkgs.coreutils-full
      pkgs.openssh
      pkgs.git
      pkgs.curl
      (pkgs.writeShellScriptBin "reload-dotfiles" ''
        ${pkgs.home-manager}/bin/home-manager switch --flake ''${DOTFILES_REPO:-$1}
      '')
      (pkgs.writeTextDir "etc/nix/nix.conf" ''
        experimental-features = nix-command flakes
      '')
      (pkgs.writeTextDir "etc/passwd" "coder:x:1000:1000::/home/coder:/bin/bash")
      (pkgs.writeTextDir "etc/shadow" "coder:!:::::::")
      (pkgs.writeTextDir "etc/group" "coder:x:1000:")
      (pkgs.writeTextDir "etc/gshadow" "coder:x::")
    ];
    pathsToLink = ["/bin" "/etc"];
  };
  maxLayers = 5;

  uid = 1000;
  gid = 1000;
  fakeRootCommands = ''
    mkdir -p /home/coder /tmp /nix/var/nix
    chown -R 1000:1000 /
  '';
  enableFakechroot = true;

  config = {
    Cmd = ["/bin/bash"];
    User = "1000:1000";
    Env = [
      "SSL_CERT_FILE=${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt"
      "HOME=/home/coder"
      "USER=coder"
    ];
  };
}
chore: add nix flake and image 2024-04-24 17:09:10 +02:00			`{`
			`lib,`
			`pkgs,`
			`...`
			`}:`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`pkgs.dockerTools.buildLayeredImage {`
chore: add nix flake and image 2024-04-24 17:09:10 +02:00			`name = "nix-coder";`
			`tag = "latest";`

chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`contents = pkgs.buildEnv {`
chore: add nix flake and image 2024-04-24 17:09:10 +02:00			`name = "image-root";`
chore(image): add nix and busybox to base image 2024-04-24 23:51:35 +02:00			`paths = [`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`pkgs.bash`
chore(image): add nix and busybox to base image 2024-04-24 23:51:35 +02:00			`pkgs.bashInteractive`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`pkgs.nix`
chore(image): replace busybox → coreutils-full 2024-04-25 00:07:30 +02:00			`pkgs.coreutils-full`
chore(image): add openssh 2024-04-27 17:56:06 +02:00			`pkgs.openssh`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`pkgs.git`
chore(image): add curl 2024-04-25 00:42:29 +02:00			`pkgs.curl`
feat: add dotfile loading via home-manager 2024-04-27 19:52:51 +02:00			`(pkgs.writeShellScriptBin "reload-dotfiles" ''`
			`${pkgs.home-manager}/bin/home-manager switch --flake ''${DOTFILES_REPO:-$1}`
			`'')`
fix(image): set ownership of most image contents to 1000:1000 to fix permission issues 2024-05-07 00:48:23 +02:00			`(pkgs.writeTextDir "etc/nix/nix.conf" ''`
			`experimental-features = nix-command flakes`
			`'')`
chore(image): add /etc/passwd, set $HOME and enable nix experimental features by default 2024-04-26 21:22:17 +02:00			`(pkgs.writeTextDir "etc/passwd" "coder:x:1000:1000::/home/coder:/bin/bash")`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`(pkgs.writeTextDir "etc/shadow" "coder:!:::::::")`
			`(pkgs.writeTextDir "etc/group" "coder:x:1000:")`
			`(pkgs.writeTextDir "etc/gshadow" "coder:x::")`
chore(image): add nix and busybox to base image 2024-04-24 23:51:35 +02:00			`];`
chore(image): add /etc/passwd, set $HOME and enable nix experimental features by default 2024-04-26 21:22:17 +02:00			`pathsToLink = ["/bin" "/etc"];`
chore: add nix flake and image 2024-04-24 17:09:10 +02:00			`};`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`maxLayers = 5;`
chore: add nix flake and image 2024-04-24 17:09:10 +02:00
fix(image): set ownership of most image contents to 1000:1000 to fix permission issues 2024-05-07 00:48:23 +02:00			`uid = 1000;`
			`gid = 1000;`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`fakeRootCommands = ''`
fix(image): set ownership of most image contents to 1000:1000 to fix permission issues 2024-05-07 00:48:23 +02:00			`mkdir -p /home/coder /tmp /nix/var/nix`
			`chown -R 1000:1000 /`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`'';`
fix(image): set ownership of most image contents to 1000:1000 to fix permission issues 2024-05-07 00:48:23 +02:00			`enableFakechroot = true;`

fix(image): add CA certificates 2024-04-26 20:45:24 +02:00			`config = {`
			`Cmd = ["/bin/bash"];`
fix(image): set ownership of most image contents to 1000:1000 to fix permission issues 2024-05-07 00:48:23 +02:00			`User = "1000:1000";`
chore(image): add /etc/passwd, set $HOME and enable nix experimental features by default 2024-04-26 21:22:17 +02:00			`Env = [`
			`"SSL_CERT_FILE=${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt"`
			`"HOME=/home/coder"`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`"USER=coder"`
chore(image): add /etc/passwd, set $HOME and enable nix experimental features by default 2024-04-26 21:22:17 +02:00			`];`
fix(image): add CA certificates 2024-04-26 20:45:24 +02:00			`};`
chore: add nix flake and image 2024-04-24 17:09:10 +02:00			`}`