blob: a6aa0de42290dce3a2e1e219908b5e6c9c20f5c4 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
|
let
nixpkgs-tar = builtins.fetchTarball (import ./nixpkgs.nix);
nixpkgs = import "${nixpkgs-tar}" {};
nixos = import "${nixpkgs-tar}/nixos";
# TODO(bsima): buildNixOS should be split into multiple functions that each
# return one thing, instead of a single function that returns multiple things
buildNixOS = opts: let full = (nixos opts); in {
system = full.system;
vm = full.vm;
};
buildHaskellApp = import ./Com/Simatime/buildHaskellApp.nix nixpkgs;
nixos-mailserver = builtins.fetchTarball {
url = "https://gitlab.com/simple-nixos-mailserver/nixos-mailserver/-/archive/v2.2.1/nixos-mailserver-v2.2.1.tar.gz";
sha256 = "03d49v8qnid9g9rha0wg2z6vic06mhp0b049s3whccn1axvs2zzx";
};
in {
Com.Simatime = buildNixOS {
system = "x86_64-linux";
configuration = {
imports = [
./Com/Simatime/hardware.nix
./Com/Simatime/networking.nix
# common infra
./Com/Simatime/users.nix
./Com/Simatime/packages.nix
# configured modules
./Com/Simatime/git.nix
./Com/Simatime/mail.nix
./Com/Simatime/web.nix
./Com/Simatime/znc.nix
# third party
nixos-mailserver
];
# TODO(bsima): move more stuff here to a common module
nixpkgs.config.allowUnfree = true;
programs.mosh = {
enable = true;
withUtempter = true;
};
services.openssh = {
enable = true;
passwordAuthentication = false;
};
security.sudo.wheelNeedsPassword = true;
boot.cleanTmpDir = true;
};
} // {
dev = buildNixOS {
system = "x86_64-linux";
configuration = {
imports = [
./Com/Simatime/users.nix
./Com/Simatime/packages.nix
./Com/Simatime/dev/hardware.nix
./Com/Simatime/dev/configuration.nix
];
};
};
};
Com.InfluencedByBooks = buildNixOS {
system = "x86_64-linux";
configuration = {
imports = [
./Com/InfluencedByBooks/service.nix
# common infra
./Com/Simatime/users.nix
./Com/Simatime/packages.nix
];
nixpkgs.config.allowUnfree = true;
services.openssh = {
enable = true;
passwordAuthentication = false;
};
security.sudo.wheelNeedsPassword = true;
boot.cleanTmpDir = true;
boot.isContainer = true;
networking.useDHCP = false;
};
} // (buildHaskellApp {
name = "Com.InfluencedByBooks";
nick = "ibb";
apex = "Com.InfluencedByBooks.Apex";
aero = "Com.InfluencedByBooks.Aero";
deps = {
both = [
"clay"
"miso"
"protolude"
"servant"
"text"
];
apex = [
"MonadRandom"
"acid-state"
"blaze-html"
"blaze-markup"
"bytestring"
"ixset"
"random"
"safecopy"
"scotty"
"servant-server"
"text"
];
aero = [
"aeson"
"containers"
"ghcjs-base"
];
};
});
}
|
