coder-templates/image.nix

{
  lib,
  pkgs,
  ...
}:
pkgs.dockerTools.buildLayeredImage {
  name = "nix-coder";
  tag = "latest";

  contents = pkgs.buildEnv {
    name = "image-root";
    paths = with pkgs; [
      bash
      bashInteractive
      nix
      coreutils-full
      openssh
      git
      curl
      ncurses
      dockerTools.usrBinEnv
      (writeShellScriptBin "reload-dotfiles" ''
        ${home-manager}/bin/home-manager switch --flake ''${DOTFILES_REPO:-$1}
      '')
      (writeTextDir "etc/nix/nix.conf" ''
        experimental-features = nix-command flakes
      '')
      (writeTextDir "etc/os-release" ''
        ID=nixos
      '')
      (writeTextDir "etc/passwd" "coder:x:1000:1000::/home/coder:/bin/bash")
      (writeTextDir "etc/shadow" "coder:!:::::::")
      (writeTextDir "etc/group" "coder:x:1000:")
      (writeTextDir "etc/gshadow" "coder:x::")
    ];
    pathsToLink = ["/bin" "/etc" "/usr"];
  };
  maxLayers = 5;

  uid = 1000;
  gid = 1000;
  fakeRootCommands = ''
    mkdir -p ./home/coder ./tmp ./nix/var/nix
    chown -R 1000:1000 ./
  '';

  config = {
    Cmd = ["/bin/bash"];
    User = "1000:1000";
    Env = [
      "SSL_CERT_FILE=${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt"
      "HOME=/home/coder"
      "USER=coder"
    ];
  };
}
chore: add nix flake and image 2024-04-24 17:09:10 +02:00			`{`
			`lib,`
			`pkgs,`
			`...`
			`}:`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`pkgs.dockerTools.buildLayeredImage {`
chore: add nix flake and image 2024-04-24 17:09:10 +02:00			`name = "nix-coder";`
			`tag = "latest";`

chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`contents = pkgs.buildEnv {`
chore: add nix flake and image 2024-04-24 17:09:10 +02:00			`name = "image-root";`
chore(image): add ncurses and usrBinEnv 2024-05-08 13:35:41 +02:00			`paths = with pkgs; [`
			`bash`
			`bashInteractive`
			`nix`
			`coreutils-full`
			`openssh`
			`git`
			`curl`
			`ncurses`
			`dockerTools.usrBinEnv`
			`(writeShellScriptBin "reload-dotfiles" ''`
			`${home-manager}/bin/home-manager switch --flake ''${DOTFILES_REPO:-$1}`
feat: add dotfile loading via home-manager 2024-04-27 19:52:51 +02:00			`'')`
chore(image): add ncurses and usrBinEnv 2024-05-08 13:35:41 +02:00			`(writeTextDir "etc/nix/nix.conf" ''`
fix(image): set ownership of most image contents to 1000:1000 to fix permission issues 2024-05-07 00:48:23 +02:00			`experimental-features = nix-command flakes`
			`'')`
chore: add /etc/os-release for coder stat to work 2024-05-08 14:44:50 +02:00			`(writeTextDir "etc/os-release" ''`
			`ID=nixos`
			`'')`
chore(image): add ncurses and usrBinEnv 2024-05-08 13:35:41 +02:00			`(writeTextDir "etc/passwd" "coder:x:1000:1000::/home/coder:/bin/bash")`
			`(writeTextDir "etc/shadow" "coder:!:::::::")`
			`(writeTextDir "etc/group" "coder:x:1000:")`
			`(writeTextDir "etc/gshadow" "coder:x::")`
chore(image): add nix and busybox to base image 2024-04-24 23:51:35 +02:00			`];`
chore(image): add ncurses and usrBinEnv 2024-05-08 13:35:41 +02:00			`pathsToLink = ["/bin" "/etc" "/usr"];`
chore: add nix flake and image 2024-04-24 17:09:10 +02:00			`};`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`maxLayers = 5;`
chore: add nix flake and image 2024-04-24 17:09:10 +02:00
fix(image): set ownership of most image contents to 1000:1000 to fix permission issues 2024-05-07 00:48:23 +02:00			`uid = 1000;`
			`gid = 1000;`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`fakeRootCommands = ''`
fix(image): apparently fakechroot does not work well on aarch64-linux 2024-05-07 01:03:00 +02:00			`mkdir -p ./home/coder ./tmp ./nix/var/nix`
			`chown -R 1000:1000 ./`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`'';`
fix(image): set ownership of most image contents to 1000:1000 to fix permission issues 2024-05-07 00:48:23 +02:00
fix(image): add CA certificates 2024-04-26 20:45:24 +02:00			`config = {`
			`Cmd = ["/bin/bash"];`
fix(image): set ownership of most image contents to 1000:1000 to fix permission issues 2024-05-07 00:48:23 +02:00			`User = "1000:1000";`
chore(image): add /etc/passwd, set $HOME and enable nix experimental features by default 2024-04-26 21:22:17 +02:00			`Env = [`
			`"SSL_CERT_FILE=${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt"`
			`"HOME=/home/coder"`
chore(image): create various directories, add normal bash and git and switch to layered image 2024-04-27 15:12:10 +02:00			`"USER=coder"`
chore(image): add /etc/passwd, set $HOME and enable nix experimental features by default 2024-04-26 21:22:17 +02:00			`];`
fix(image): add CA certificates 2024-04-26 20:45:24 +02:00			`};`
chore: add nix flake and image 2024-04-24 17:09:10 +02:00			`}`