flake/flake.nix

{
  description = "Guanran928's Flake";

  inputs = {
    # INFO: `nixos-unstable` and `nixpkgs-unstable` contains the same set of packages,
    #       the difference between those channels is their jobsets,
    #       `nixpkgs-unstable` contains less(?) jobs, and usually updates faster.
    #
    # REFERENCE: https://discourse.nixos.org/t/differences-between-nix-channels/13998/5
    nixpkgs.url = "github:NixOS/nixpkgs/nixpkgs-unstable";

    colmena = {
      url = "github:zhaofengli/colmena";
      inputs.nixpkgs.follows = "nixpkgs";
      inputs.flake-compat.follows = "flake-compat";
      inputs.flake-utils.follows = "flake-utils";
      inputs.stable.follows = "nixpkgs";
    };
    disko = {
      url = "github:nix-community/disko";
      inputs.nixpkgs.follows = "nixpkgs";
    };
    flake-utils = {
      url = "github:numtide/flake-utils";
      inputs.systems.follows = "systems";
    };
    home-manager = {
      url = "github:nix-community/home-manager";
      inputs.nixpkgs.follows = "nixpkgs";
    };
    lanzaboote = {
      url = "github:nix-community/lanzaboote";
      inputs.nixpkgs.follows = "nixpkgs";
      inputs.crane.follows = "crane";
      inputs.flake-compat.follows = "flake-compat";
      inputs.flake-parts.follows = "flake-parts";
      inputs.pre-commit-hooks-nix.follows = "pre-commit-hooks-nix";
      inputs.rust-overlay.follows = "rust-overlay";
    };
    neovim = {
      url = "git+https://git.ny4.dev/nyancat/nvim";
      inputs.nixpkgs.follows = "nixpkgs";
      inputs.flake-utils.follows = "flake-utils";
      inputs.treefmt-nix.follows = "treefmt-nix";
      inputs.systems.follows = "systems";
    };
    nixos-hardware = {
      url = "github:NixOS/nixos-hardware";
    };
    preservation = {
      url = "github:WilliButz/preservation";
    };
    sops-nix = {
      url = "github:Mic92/sops-nix";
      inputs.nixpkgs.follows = "nixpkgs";
      inputs.nixpkgs-stable.follows = "nixpkgs";
    };
    systems = {
      url = "github:nix-systems/default";
    };
    treefmt-nix = {
      url = "github:numtide/treefmt-nix";
      inputs.nixpkgs.follows = "nixpkgs";
    };

    ### De-dupe flake dependencies
    crane = {
      url = "github:ipetkov/crane";
    };
    flake-compat = {
      url = "github:edolstra/flake-compat";
    };
    flake-parts = {
      url = "github:hercules-ci/flake-parts";
      inputs.nixpkgs-lib.follows = "nixpkgs";
    };
    gitignore = {
      url = "github:hercules-ci/gitignore.nix";
      inputs.nixpkgs.follows = "nixpkgs";
    };
    pre-commit-hooks-nix = {
      url = "github:cachix/pre-commit-hooks.nix";
      inputs.nixpkgs.follows = "nixpkgs";
      inputs.nixpkgs-stable.follows = "nixpkgs";
      inputs.flake-compat.follows = "flake-compat";
      inputs.gitignore.follows = "gitignore";
    };
    rust-overlay = {
      url = "github:oxalica/rust-overlay";
      inputs.nixpkgs.follows = "nixpkgs";
    };
  };

  outputs =
    inputs:
    let
      data = builtins.fromJSON (builtins.readFile ./infra/data.json);
      specialArgs = {
        inherit inputs;
        nodes = data.nodes.value;
      };
    in
    inputs.flake-utils.lib.eachDefaultSystem (
      system:
      let
        pkgs = inputs.nixpkgs.legacyPackages.${system};
        treefmtEval = inputs.treefmt-nix.lib.evalModule pkgs ./treefmt.nix;
      in
      {
        # nix fmt
        formatter = treefmtEval.config.build.wrapper;

        # nix flake check
        checks.formatting = treefmtEval.config.build.check inputs.self;

        # nix {run,shell,build}
        legacyPackages = import ./pkgs pkgs;

        # nix develop
        devShells.default = pkgs.mkShellNoCC {
          packages = with pkgs; [
            (opentofu.withPlugins (
              ps: with ps; [
                aws
                vultr
                sops
              ]
            ))
            colmena
            just
            sops
          ];
        };
      }
    )
    // {
      nixosModules.default = ./nixos/modules;
      overlays.default = import ./overlays;

      nixosConfigurations = {
        "dust" = inputs.nixpkgs.lib.nixosSystem {
          inherit specialArgs;
          system = "x86_64-linux";
          modules = [
            ./nixos/profiles/core
            ./hosts/dust
          ];
        };
      } // inputs.self.colmenaHive.nodes;

      colmenaHive = inputs.colmena.lib.makeHive (
        {
          meta = {
            inherit specialArgs;
            nixpkgs = import inputs.nixpkgs {
              system = "x86_64-linux"; # How does this work?
            };
          };

          defaults.imports = [
            ./nixos/profiles/core
            ./nixos/profiles/server
          ];

          "pek0" = {
            imports = [ ./hosts/pek0 ];
            deployment.targetHost = "blacksteel"; # thru tailscale
          };
        }
        // (builtins.mapAttrs (n: v: {
          deployment = {
            inherit (v) tags;
            targetHost = v.fqdn;
          };
          imports =
            if (builtins.elem "vultr" v.tags) then
              [
                ./hosts/vultr/${n}
                ./hosts/vultr/common
                { networking.hostName = n; }
              ]
            else if (builtins.elem "aws" v.tags) then
              [
                ./hosts/aws/${n}
                { networking.hostName = n; }
              ]
            else
              [ ./hosts/${n} ];
        }) data.nodes.value)
      );
    };
}
initial commit 2023-09-19 00:17:43 +00:00			`{`
flake: add description 2023-11-03 15:16:07 +00:00			`description = "Guanran928's Flake";`

initial commit 2023-09-19 00:17:43 +00:00			`inputs = {`
flake: update lock file, switch to `nixpkgs-unstable` 2024-02-29 17:21:06 +00:00			# INFO: `nixos-unstable` and `nixpkgs-unstable` contains the same set of packages,
			`# the difference between those channels is their jobsets,`
			# `nixpkgs-unstable` contains less(?) jobs, and usually updates faster.
			`#`
			`# REFERENCE: https://discourse.nixos.org/t/differences-between-nix-channels/13998/5`
flake: bump 2024-09-06 11:51:22 +00:00			`nixpkgs.url = "github:NixOS/nixpkgs/nixpkgs-unstable";`
repo: git submodules -> flake inputs 2023-10-14 07:53:25 +00:00
flake: refactor, use colmenaHive 2024-09-01 04:19:53 +00:00			`colmena = {`
			`url = "github:zhaofengli/colmena";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`inputs.flake-compat.follows = "flake-compat";`
			`inputs.flake-utils.follows = "flake-utils";`
			`inputs.stable.follows = "nixpkgs";`
			`};`
repo: declutter 2023-10-15 00:51:56 +00:00			`disko = {`
			`url = "github:nix-community/disko";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
flake: use flake-utils 2023-12-17 12:06:05 +00:00			`flake-utils = {`
			`url = "github:numtide/flake-utils";`
			`inputs.systems.follows = "systems";`
			`};`
initial commit 2023-09-19 00:17:43 +00:00			`home-manager = {`
			`url = "github:nix-community/home-manager";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
			`lanzaboote = {`
			`url = "github:nix-community/lanzaboote";`
			`inputs.nixpkgs.follows = "nixpkgs";`
flake: dedupe inputs 2023-11-03 15:18:31 +00:00			`inputs.crane.follows = "crane";`
			`inputs.flake-compat.follows = "flake-compat";`
			`inputs.flake-parts.follows = "flake-parts";`
			`inputs.pre-commit-hooks-nix.follows = "pre-commit-hooks-nix";`
			`inputs.rust-overlay.follows = "rust-overlay";`
initial commit 2023-09-19 00:17:43 +00:00			`};`
flake: add nixcasks 2024-02-26 18:03:00 +00:00			`neovim = {`
flake: switch to self-hosted git 2024-07-04 05:29:18 +00:00			`url = "git+https://git.ny4.dev/nyancat/nvim";`
flake: add nixcasks 2024-02-26 18:03:00 +00:00			`inputs.nixpkgs.follows = "nixpkgs";`
			`inputs.flake-utils.follows = "flake-utils";`
flake: update lock file 2024-03-23 06:17:09 +00:00			`inputs.treefmt-nix.follows = "treefmt-nix";`
			`inputs.systems.follows = "systems";`
flake: add nixcasks 2024-02-26 18:03:00 +00:00			`};`
nixos: hardware: use nixos-hardware 2023-12-16 08:32:13 +00:00			`nixos-hardware = {`
flake: update lock file 2024-07-25 16:44:41 +00:00			`url = "github:NixOS/nixos-hardware";`
nixos: hardware: use nixos-hardware 2023-12-16 08:32:13 +00:00			`};`
nixos: impermanence -> perservation 2024-09-07 06:49:47 +00:00			`preservation = {`
			`url = "github:WilliButz/preservation";`
			`};`
repo: declutter 2023-10-15 00:51:56 +00:00			`sops-nix = {`
			`url = "github:Mic92/sops-nix";`
			`inputs.nixpkgs.follows = "nixpkgs";`
flake: remove unneeded inputs 2024-07-31 07:00:48 +00:00			`inputs.nixpkgs-stable.follows = "nixpkgs";`
flake: dedupe inputs 2023-11-03 15:18:31 +00:00			`};`
flake: refactor, use colmenaHive 2024-09-01 04:19:53 +00:00			`systems = {`
			`url = "github:nix-systems/default";`
			`};`
flake: use treefmt-nix 2024-03-09 01:44:41 +00:00			`treefmt-nix = {`
			`url = "github:numtide/treefmt-nix";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
flake: dedupe inputs 2023-11-03 15:18:31 +00:00
flake: update lock file, switch to `nixpkgs-unstable` 2024-02-29 17:21:06 +00:00			`### De-dupe flake dependencies`
flake: dedupe inputs 2023-11-03 15:18:31 +00:00			`crane = {`
			`url = "github:ipetkov/crane";`
			`};`
			`flake-compat = {`
			`url = "github:edolstra/flake-compat";`
			`};`
			`flake-parts = {`
			`url = "github:hercules-ci/flake-parts";`
			`inputs.nixpkgs-lib.follows = "nixpkgs";`
			`};`
			`gitignore = {`
			`url = "github:hercules-ci/gitignore.nix";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
			`pre-commit-hooks-nix = {`
			`url = "github:cachix/pre-commit-hooks.nix";`
			`inputs.nixpkgs.follows = "nixpkgs";`
flake: remove unneeded inputs 2024-07-31 07:00:48 +00:00			`inputs.nixpkgs-stable.follows = "nixpkgs";`
flake: dedupe inputs 2023-11-03 15:18:31 +00:00			`inputs.flake-compat.follows = "flake-compat";`
			`inputs.gitignore.follows = "gitignore";`
			`};`
			`rust-overlay = {`
			`url = "github:oxalica/rust-overlay";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
initial commit 2023-09-19 00:17:43 +00:00			`};`

treewide: alejandra -> nixfmt-rfc-style 2024-08-25 15:02:35 +00:00			`outputs =`
			`inputs:`
infra: init opentofu 2024-09-21 16:21:30 +00:00			`let`
			`data = builtins.fromJSON (builtins.readFile ./infra/data.json);`
			`specialArgs = {`
			`inherit inputs;`
			`nodes = data.nodes.value;`
			`};`
			`in`
treewide: alejandra -> nixfmt-rfc-style 2024-08-25 15:02:35 +00:00			`inputs.flake-utils.lib.eachDefaultSystem (`
			`system:`
			`let`
			`pkgs = inputs.nixpkgs.legacyPackages.${system};`
			`treefmtEval = inputs.treefmt-nix.lib.evalModule pkgs ./treefmt.nix;`
			`in`
			`{`
flake: refactor, use colmenaHive 2024-09-01 04:19:53 +00:00			`# nix fmt`
treewide: alejandra -> nixfmt-rfc-style 2024-08-25 15:02:35 +00:00			`formatter = treefmtEval.config.build.wrapper;`
fixup! flake: refactor 2024-03-09 04:25:06 +00:00
flake: refactor, use colmenaHive 2024-09-01 04:19:53 +00:00			`# nix flake check`
treewide: alejandra -> nixfmt-rfc-style 2024-08-25 15:02:35 +00:00			`checks.formatting = treefmtEval.config.build.check inputs.self;`
flake: simplify 2023-12-17 14:00:56 +00:00
flake: refactor, use colmenaHive 2024-09-01 04:19:53 +00:00			`# nix {run,shell,build}`
treewide: alejandra -> nixfmt-rfc-style 2024-08-25 15:02:35 +00:00			`legacyPackages = import ./pkgs pkgs;`
flake: add devShells 2024-06-20 14:04:34 +00:00
flake: refactor, use colmenaHive 2024-09-01 04:19:53 +00:00			`# nix develop`
home: add direnv 2024-08-30 20:01:51 +00:00			`devShells.default = pkgs.mkShellNoCC {`
treewide: alejandra -> nixfmt-rfc-style 2024-08-25 15:02:35 +00:00			`packages = with pkgs; [`
infra: init opentofu 2024-09-21 16:21:30 +00:00			`(opentofu.withPlugins (`
			`ps: with ps; [`
infra: import aws into opentofu 2024-09-27 16:03:31 +00:00			`aws`
infra: init opentofu 2024-09-21 16:21:30 +00:00			`vultr`
			`sops`
			`]`
			`))`
treewide: alejandra -> nixfmt-rfc-style 2024-08-25 15:02:35 +00:00			`colmena`
infra: add installer 2024-09-22 08:31:40 +00:00			`just`
treewide: alejandra -> nixfmt-rfc-style 2024-08-25 15:02:35 +00:00			`sops`
			`];`
			`};`
			`}`
			`)`
treewide: drop darwin 2024-08-24 09:12:08 +00:00			`// {`
flake: refactor 2024-03-09 04:06:08 +00:00			`nixosModules.default = ./nixos/modules;`
flake: refactor, use colmenaHive 2024-09-01 04:19:53 +00:00			`overlays.default = import ./overlays;`
fixup! flake: refactor 2024-03-09 04:25:06 +00:00
flake: refactor, use colmenaHive 2024-09-01 04:19:53 +00:00			`nixosConfigurations = {`
			`"dust" = inputs.nixpkgs.lib.nixosSystem {`
infra: init opentofu 2024-09-21 16:21:30 +00:00			`inherit specialArgs;`
flake: refactor, use colmenaHive 2024-09-01 04:19:53 +00:00			`system = "x86_64-linux";`
			`modules = [`
			`./nixos/profiles/core`
			`./hosts/dust`
			`];`
treewide: alejandra -> nixfmt-rfc-style 2024-08-25 15:02:35 +00:00			`};`
flake: refactor, use colmenaHive 2024-09-01 04:19:53 +00:00			`} // inputs.self.colmenaHive.nodes;`
hosts: add socrates - gh need to store credentials in hosts.yaml 2024-03-20 15:01:42 +00:00
infra: init opentofu 2024-09-21 16:21:30 +00:00			`colmenaHive = inputs.colmena.lib.makeHive (`
			`{`
			`meta = {`
			`inherit specialArgs;`
			`nixpkgs = import inputs.nixpkgs {`
			`system = "x86_64-linux"; # How does this work?`
			`};`
hosts: add lightsail-tokyo 2024-04-22 18:35:50 +00:00			`};`

infra: init opentofu 2024-09-21 16:21:30 +00:00			`defaults.imports = [`
			`./nixos/profiles/core`
			`./nixos/profiles/server`
			`];`
flake/colmena: cleanup 2024-07-10 09:57:01 +00:00
infra: init opentofu 2024-09-21 16:21:30 +00:00			`"pek0" = {`
			`imports = [ ./hosts/pek0 ];`
			`deployment.targetHost = "blacksteel"; # thru tailscale`
			`};`
			`}`
			`// (builtins.mapAttrs (n: v: {`
			`deployment = {`
			`inherit (v) tags;`
			`targetHost = v.fqdn;`
			`};`
			`imports =`
			`if (builtins.elem "vultr" v.tags) then`
			`[`
			`./hosts/vultr/${n}`
			`./hosts/vultr/common`
			`{ networking.hostName = n; }`
			`]`
infra: import aws into opentofu 2024-09-27 16:03:31 +00:00			`else if (builtins.elem "aws" v.tags) then`
			`[`
			`./hosts/aws/${n}`
			`{ networking.hostName = n; }`
			`]`
infra: init opentofu 2024-09-21 16:21:30 +00:00			`else`
			`[ ./hosts/${n} ];`
			`}) data.nodes.value)`
			`);`
treewide: drop darwin 2024-08-24 09:12:08 +00:00			`};`
initial commit 2023-09-19 00:17:43 +00:00			`}`