From 618b88dadd5d4a65a69330e91ad5ef6e1a850f0d Mon Sep 17 00:00:00 2001
From: Pim Kunis <pim@kunis.nl>
Date: Thu, 2 May 2024 16:21:52 +0200
Subject: [PATCH] Debug Kubernetes crash

---
 .forgejo/workflows/deploy.yaml | 20 +++++++++++---------
 configuration.nix              |  1 +
 2 files changed, 12 insertions(+), 9 deletions(-)

diff --git a/.forgejo/workflows/deploy.yaml b/.forgejo/workflows/deploy.yaml
index 997c77f..a5211d5 100644
--- a/.forgejo/workflows/deploy.yaml
+++ b/.forgejo/workflows/deploy.yaml
@@ -9,12 +9,14 @@ jobs:
       - name: Clone repository
         run: git clone ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git src
       - run: ls -alh /var/run/secrets/kubernetes.io/serviceaccount
-      - run: nix run nixpkgs#kubectl -- config set-cluster my-cluster --server=https://kubernetes.default.svc --certificate-authority=/var/run/secrets/kubernetes.io/serviceaccount/ca.crt
-      - run: nix run nixpkgs#kubectl -- config set-credentials my-service-account --token=$(cat /var/run/secrets/kubernetes.io/serviceaccount/token)
-      - run: nix run nixpkgs#kubectl -- config set-context my-context --cluster=my-cluster --user=my-service-account
-      - run: nix run nixpkgs#kubectl -- config use-context my-context
-      - run: nix run nixpkgs#kubectl -- get pods
-      - run: |
-          mkdir -p ~/.config/sops/age
-          echo -n "${{ secrets.AGE_SECRET_KEY }}" > ~/.config/sops/age/keys.txt
-      - run: nix run nixpkgs#sops -- --decrypt src/secrets/sops.yaml | grep "paperless-ngx:"
+      - run: "curl -H \"Authorization: Bearer $(cat /var/run/secrets/kubernetes.io/serviceaccount/token)\" https://kubernetes.default.svc/api/v1/namespaces/default/pods"
+
+      # - run: nix run nixpkgs#kubectl -- config set-cluster my-cluster --server=https://kubernetes.default.svc --certificate-authority=/var/run/secrets/kubernetes.io/serviceaccount/ca.crt
+      # - run: nix run nixpkgs#kubectl -- config set-credentials my-service-account --token=$(cat /var/run/secrets/kubernetes.io/serviceaccount/token)
+      # - run: nix run nixpkgs#kubectl -- config set-context my-context --cluster=my-cluster --user=my-service-account
+      # - run: nix run nixpkgs#kubectl -- config use-context my-context
+      # - run: nix run nixpkgs#kubectl -- get pods
+      # - run: |
+      #     mkdir -p ~/.config/sops/age
+      #     echo -n "${{ secrets.AGE_SECRET_KEY }}" > ~/.config/sops/age/keys.txt
+      # - run: nix run nixpkgs#sops -- --decrypt src/secrets/sops.yaml | grep "paperless-ngx:"
diff --git a/configuration.nix b/configuration.nix
index 32e8f7a..5877355 100644
--- a/configuration.nix
+++ b/configuration.nix
@@ -77,6 +77,7 @@
       openssl
       nfs-utils
       rsync
+      fio
     ];
 
     boot = lib.mkIf (! machine.isRaspberryPi) {