nixos-servers/nix/flake/kubenix/default.nix

{ self, flake-utils, kubenix, nixhelm, ... }: flake-utils.lib.eachDefaultSystem
  (system: {
    kubenix = kubenix.packages.${system}.default.override {
      specialArgs.flake = self;

      module = { kubenix, ... }: {
        imports = [
          kubenix.modules.k8s
          kubenix.modules.helm
          ./freshrss.nix
          ./cyberchef.nix
          ./kms.nix
          ./inbucket.nix
          ./radicale.nix
          ./syncthing.nix
          ./nextcloud.nix
          ./pihole.nix
          # ./hedgedoc.nix
          ./paperless-ngx.nix
          ./kitchenowl.nix
          ./forgejo.nix
          ./media.nix
        ];
        kubernetes.kubeconfig = "~/.kube/config";
        kubenix.project = "home";

        kubernetes = {
          customTypes = {
            # HACK: These are dummy custom types.
            # This is needed, because the CRDs imported as a chart are not available as Nix modules.
            # There is no nix-based validation on resources defined using these types!
            # See: https://github.com/hall/kubenix/issues/34
            ipAddressPool = {
              attrName = "ipAddressPools";
              group = "metallb.io";
              version = "v1beta1";
              kind = "IPAddressPool";
            };

            l2Advertisement = {
              attrName = "l2Advertisements";
              group = "metallb.io";
              version = "v1beta1";
              kind = "L2Advertisement";
            };

            helmChartConfig = {
              attrName = "helmChartConfigs";
              group = "helm.cattle.io";
              version = "v1";
              kind = "HelmChartConfig";
            };
          };

          resources = {
            ipAddressPools.main.spec.addresses = [ "192.168.30.128-192.168.30.200" ];
            l2Advertisements.main.metadata = { };

            # Override Traefik's service with a static load balancer IP.
            helmChartConfigs.traefik = {
              metadata.namespace = "kube-system";

              spec.valuesContent = ''
                service:
                  spec:
                    loadBalancerIP: "192.168.30.128"
              '';
            };
          };

          helm.releases.metallb = {
            chart = nixhelm.chartsDerivations.${system}.metallb.metallb;
            includeCRDs = true;
          };
        };
      };
    };
  })
deploy metallb use helmnix for helm deployments 2024-03-24 20:23:17 +00:00			`{ self, flake-utils, kubenix, nixhelm, ... }: flake-utils.lib.eachDefaultSystem`
use kubenix to create cyberchef resources 2024-03-23 16:24:39 +00:00			`(system: {`
			`kubenix = kubenix.packages.${system}.default.override {`
			`specialArgs.flake = self;`

			`module = { kubenix, ... }: {`
wip k3s cluster 2024-03-26 19:26:02 +00:00			`imports = [`
			`kubenix.modules.k8s`
			`kubenix.modules.helm`
move freshrss to kubernetes 2024-03-27 20:20:22 +00:00			`./freshrss.nix`
move cyberchef to nix module advertise .30 addresses instead of .40 2024-03-27 19:43:59 +00:00			`./cyberchef.nix`
port kms to kubernetes 2024-03-27 22:19:47 +00:00			`./kms.nix`
convert inbucket to kubernetes deployment 2024-03-28 19:27:36 +00:00			`./inbucket.nix`
move radicale to kubernetes 2024-03-28 20:10:15 +00:00			`./radicale.nix`
move syncthing to kubernetes 2024-03-28 20:44:21 +00:00			`./syncthing.nix`
			`./nextcloud.nix`
move pihole to kubernetes fix freshrss admin password secret 2024-03-28 22:05:05 +00:00			`./pihole.nix`
port hedgedoc to kubernetes (albeit disabled) 2024-03-29 09:24:54 +00:00			`# ./hedgedoc.nix`
migrate paperless-ngx to kubernetes 2024-03-29 12:50:51 +00:00			`./paperless-ngx.nix`
migrate kitchenowl to kubernetes 2024-03-29 13:26:05 +00:00			`./kitchenowl.nix`
migrate forgejo to kubernetes 2024-03-29 14:49:34 +00:00			`./forgejo.nix`
migrate jellyfin to kubernetes 2024-04-06 14:15:01 +00:00			`./media.nix`
wip k3s cluster 2024-03-26 19:26:02 +00:00			`];`
use kubenix to create cyberchef resources 2024-03-23 16:24:39 +00:00			`kubernetes.kubeconfig = "~/.kube/config";`
			`kubenix.project = "home";`

deploy metallb use helmnix for helm deployments 2024-03-24 20:23:17 +00:00			`kubernetes = {`
add dummy custom types for metallb manage metallb ip address pool and l2advertisements in nix 2024-03-25 20:25:43 +00:00			`customTypes = {`
			`# HACK: These are dummy custom types.`
wip k3s cluster 2024-03-26 19:26:02 +00:00			`# This is needed, because the CRDs imported as a chart are not available as Nix modules.`
			`# There is no nix-based validation on resources defined using these types!`
add dummy custom types for metallb manage metallb ip address pool and l2advertisements in nix 2024-03-25 20:25:43 +00:00			`# See: https://github.com/hall/kubenix/issues/34`
wip k3s cluster 2024-03-26 19:26:02 +00:00			`ipAddressPool = {`
			`attrName = "ipAddressPools";`
add dummy custom types for metallb manage metallb ip address pool and l2advertisements in nix 2024-03-25 20:25:43 +00:00			`group = "metallb.io";`
			`version = "v1beta1";`
			`kind = "IPAddressPool";`
			`};`

wip k3s cluster 2024-03-26 19:26:02 +00:00			`l2Advertisement = {`
			`attrName = "l2Advertisements";`
add dummy custom types for metallb manage metallb ip address pool and l2advertisements in nix 2024-03-25 20:25:43 +00:00			`group = "metallb.io";`
			`version = "v1beta1";`
			`kind = "L2Advertisement";`
			`};`
enable static traefik load balancer IP 2024-03-27 22:11:34 +00:00
			`helmChartConfig = {`
			`attrName = "helmChartConfigs";`
			`group = "helm.cattle.io";`
			`version = "v1";`
			`kind = "HelmChartConfig";`
			`};`
add dummy custom types for metallb manage metallb ip address pool and l2advertisements in nix 2024-03-25 20:25:43 +00:00			`};`

deploy metallb use helmnix for helm deployments 2024-03-24 20:23:17 +00:00			`resources = {`
clean up old kubernetes manifests 2024-03-27 20:23:12 +00:00			`ipAddressPools.main.spec.addresses = [ "192.168.30.128-192.168.30.200" ];`
wip k3s cluster 2024-03-26 19:26:02 +00:00			`l2Advertisements.main.metadata = { };`
enable static traefik load balancer IP 2024-03-27 22:11:34 +00:00
			`# Override Traefik's service with a static load balancer IP.`
			`helmChartConfigs.traefik = {`
			`metadata.namespace = "kube-system";`

			`spec.valuesContent = ''`
			`service:`
			`spec:`
			`loadBalancerIP: "192.168.30.128"`
			`'';`
			`};`
deploy metallb use helmnix for helm deployments 2024-03-24 20:23:17 +00:00			`};`

			`helm.releases.metallb = {`
			`chart = nixhelm.chartsDerivations.${system}.metallb.metallb;`
add dummy custom types for metallb manage metallb ip address pool and l2advertisements in nix 2024-03-25 20:25:43 +00:00			`includeCRDs = true;`
use kubenix to create cyberchef resources 2024-03-23 16:24:39 +00:00			`};`
			`};`
			`};`
			`};`
			`})`