2024-04-24 17:09:10 +02:00
|
|
|
{
|
|
|
|
|
description = "Coder Templates";
|
|
|
|
|
|
|
|
|
|
outputs = {
|
|
|
|
|
nixpkgs,
|
|
|
|
|
flake-parts,
|
|
|
|
|
systems,
|
|
|
|
|
...
|
|
|
|
|
} @ inputs:
|
|
|
|
|
flake-parts.lib.mkFlake {inherit inputs;} {
|
|
|
|
|
imports = [
|
|
|
|
|
inputs.devenv.flakeModule
|
|
|
|
|
inputs.nix-gitlab-ci.flakeModule
|
2024-10-03 19:08:25 +00:00
|
|
|
inputs.nix-devtools.flakeModule
|
|
|
|
|
inputs.treefmt-nix.flakeModule
|
2024-04-24 17:09:10 +02:00
|
|
|
];
|
|
|
|
|
systems = import systems;
|
|
|
|
|
flake = {
|
|
|
|
|
};
|
|
|
|
|
perSystem = {
|
|
|
|
|
pkgs,
|
2024-10-03 19:08:25 +00:00
|
|
|
config,
|
2024-04-24 17:09:10 +02:00
|
|
|
system,
|
|
|
|
|
...
|
|
|
|
|
}: {
|
|
|
|
|
_module.args.pkgs = import nixpkgs {
|
|
|
|
|
inherit system;
|
|
|
|
|
config.allowUnfree = true;
|
|
|
|
|
};
|
2024-10-03 19:08:25 +00:00
|
|
|
treefmt = {
|
|
|
|
|
projectRootFile = "flake.nix";
|
|
|
|
|
programs = {
|
|
|
|
|
alejandra.enable = true;
|
|
|
|
|
mdformat.enable = true;
|
|
|
|
|
};
|
|
|
|
|
};
|
2024-04-24 17:09:10 +02:00
|
|
|
|
|
|
|
|
devenv.shells.default = {
|
2024-10-03 19:08:25 +00:00
|
|
|
packages = with pkgs; [
|
|
|
|
|
opentofu
|
|
|
|
|
coder
|
|
|
|
|
buildah
|
2024-04-24 17:09:10 +02:00
|
|
|
];
|
|
|
|
|
|
2024-10-03 19:08:25 +00:00
|
|
|
pre-commit.hooks.treefmt = {
|
|
|
|
|
enable = true;
|
|
|
|
|
packageOverrides.treefmt = config.treefmt.build.wrapper;
|
2024-04-24 17:09:10 +02:00
|
|
|
};
|
2024-10-03 19:08:25 +00:00
|
|
|
|
2024-04-24 17:09:10 +02:00
|
|
|
task = {
|
|
|
|
|
enable = true;
|
|
|
|
|
alias = ",";
|
2024-04-24 19:01:04 +02:00
|
|
|
tasks = {
|
|
|
|
|
"build" = {
|
|
|
|
|
requires.vars = ["TEMPLATE"];
|
|
|
|
|
cmds = [
|
|
|
|
|
"nix build .#{{ .TEMPLATE }}"
|
|
|
|
|
"install result {{ .TEMPLATE }}/template.tf.json"
|
|
|
|
|
];
|
|
|
|
|
};
|
|
|
|
|
"validate" = {
|
|
|
|
|
desc = "Validate the resulting terraform files";
|
|
|
|
|
deps = ["build"];
|
|
|
|
|
requires.vars = ["TEMPLATE"];
|
|
|
|
|
dir = "{{ .TEMPLATE }}";
|
|
|
|
|
cmds = [
|
|
|
|
|
"${pkgs.opentofu}/bin/tofu init"
|
|
|
|
|
"${pkgs.opentofu}/bin/tofu validate"
|
|
|
|
|
];
|
|
|
|
|
};
|
|
|
|
|
"upload-to-coder" = {
|
|
|
|
|
desc = "Uploads the specified template to coder";
|
|
|
|
|
deps = ["build" "validate"];
|
|
|
|
|
requires.vars = ["TEMPLATE"];
|
|
|
|
|
dir = "{{ .TEMPLATE }}";
|
|
|
|
|
interactive = true;
|
|
|
|
|
cmd = ''${pkgs.coder}/bin/coder templates push "{{ .TEMPLATE }}"'';
|
|
|
|
|
};
|
|
|
|
|
};
|
2024-04-24 17:09:10 +02:00
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
packages = {
|
|
|
|
|
nix-coder-image = pkgs.callPackage ./image.nix {};
|
2024-04-24 19:01:04 +02:00
|
|
|
nix-kubernetes = inputs.terranix.lib.terranixConfiguration {
|
|
|
|
|
inherit system;
|
|
|
|
|
modules = [./nix-kubernetes];
|
|
|
|
|
};
|
2024-04-24 17:09:10 +02:00
|
|
|
};
|
2024-04-24 19:06:12 +02:00
|
|
|
|
|
|
|
|
ci = {
|
|
|
|
|
stages = ["build" "upload"];
|
2024-04-24 22:12:55 +02:00
|
|
|
jobs = let
|
|
|
|
|
SYSTEMS = ["aarch64-linux" "x86_64-linux"];
|
|
|
|
|
in {
|
2024-04-24 19:06:12 +02:00
|
|
|
"build" = {
|
2024-04-24 21:41:43 +02:00
|
|
|
stage = "build";
|
|
|
|
|
parallel.matrix = [
|
|
|
|
|
{TEMPLATE = ["nix-kubernetes"];}
|
|
|
|
|
];
|
2024-10-03 19:08:25 +00:00
|
|
|
nix.deps = [pkgs.gnutar];
|
2024-04-24 21:41:43 +02:00
|
|
|
script = [
|
|
|
|
|
"nix build .#\${TEMPLATE}"
|
2024-04-24 21:46:10 +02:00
|
|
|
"install -D result templates/\${TEMPLATE}.tf.json"
|
2024-04-24 21:41:43 +02:00
|
|
|
"tar -cf templates/\${TEMPLATE}.tar -C templates \${TEMPLATE}.tf.json"
|
|
|
|
|
];
|
|
|
|
|
artifacts.paths = ["templates/"];
|
|
|
|
|
};
|
|
|
|
|
"build:image" = {
|
2024-04-24 19:06:12 +02:00
|
|
|
stage = "build";
|
2024-04-24 22:12:55 +02:00
|
|
|
parallel.matrix = [
|
|
|
|
|
{SYSTEM = SYSTEMS;}
|
|
|
|
|
];
|
2024-04-24 19:06:12 +02:00
|
|
|
script = [
|
2024-04-24 22:12:55 +02:00
|
|
|
"nix build .#nix-coder-image --system $SYSTEM"
|
|
|
|
|
"install -D result dist/nix-coder-image_\${SYSTEM}.tar.gz"
|
2024-04-24 19:06:12 +02:00
|
|
|
];
|
|
|
|
|
artifacts.paths = ["dist/"];
|
|
|
|
|
};
|
|
|
|
|
"upload" = {
|
|
|
|
|
stage = "upload";
|
2024-10-03 19:08:25 +00:00
|
|
|
nix.deps = [pkgs.buildah];
|
2024-04-24 21:41:43 +02:00
|
|
|
needs = ["build:image"];
|
2024-04-24 22:12:55 +02:00
|
|
|
before_script = [
|
|
|
|
|
''export REGISTRY_AUTH_FILE=''${HOME}/auth.json''
|
|
|
|
|
''echo "$CI_REGISTRY_PASSWORD" | buildah login -u "$CI_REGISTRY_USER" --password-stdin $CI_REGISTRY''
|
|
|
|
|
''
|
|
|
|
|
mkdir -p /etc/containers &&
|
|
|
|
|
echo '{"default":[{"type":"insecureAcceptAnything"}]}' > /etc/containers/policy.json
|
|
|
|
|
''
|
2024-04-24 22:27:46 +02:00
|
|
|
''mkdir -p /var/tmp''
|
2024-04-24 22:12:55 +02:00
|
|
|
];
|
2024-04-24 22:58:06 +02:00
|
|
|
script =
|
|
|
|
|
[
|
|
|
|
|
''buildah manifest create localhost/nix-coder-image''
|
|
|
|
|
]
|
|
|
|
|
++ (
|
|
|
|
|
builtins.map (sys: ''
|
|
|
|
|
buildah manifest add localhost/nix-coder-image docker-archive:dist/nix-coder-image_${sys}.tar.gz
|
|
|
|
|
'')
|
|
|
|
|
SYSTEMS
|
|
|
|
|
)
|
|
|
|
|
++ [
|
|
|
|
|
''
|
|
|
|
|
buildah manifest push --all localhost/nix-coder-image \
|
|
|
|
|
docker://''${CI_REGISTRY_IMAGE}/nix-coder-image:$CI_COMMIT_SHORT_SHA
|
|
|
|
|
''
|
|
|
|
|
];
|
2024-04-24 19:06:12 +02:00
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
};
|
2024-04-24 17:09:10 +02:00
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
inputs = {
|
|
|
|
|
nixpkgs.url = "github:NixOS/nixpkgs/nixpkgs-unstable";
|
|
|
|
|
|
|
|
|
|
flake-parts.url = "github:hercules-ci/flake-parts";
|
|
|
|
|
systems.url = "github:nix-systems/default";
|
|
|
|
|
devenv.url = "github:cachix/devenv";
|
2024-10-03 19:08:25 +00:00
|
|
|
nix-gitlab-ci.url = "gitlab:TECHNOFAB/nix-gitlab-ci?dir=lib";
|
|
|
|
|
nix-devtools.url = "gitlab:TECHNOFAB/nix-devtools?dir=lib";
|
|
|
|
|
treefmt-nix.url = "github:numtide/treefmt-nix";
|
2024-04-24 19:01:04 +02:00
|
|
|
|
|
|
|
|
terranix.url = "github:terranix/terranix";
|
2024-04-24 17:09:10 +02:00
|
|
|
};
|
|
|
|
|
}
|
