Restructure and clean up code

2024-09-07 13:59:04 +02:00 · 2024-09-07 13:59:04 +02:00 · 6dd363a2a8
commit 6dd363a2a8
parent 660191ab42
37 changed files with 17 additions and 1423 deletions
--- a/flake-parts/checks.nix
+++ b/flake-parts/checks.nix
--- a/flake-parts/deploy.nix
+++ b/flake-parts/deploy.nix
--- a/flake-parts/applyset-deploy.sh
+++ b/flake-parts/applyset-deploy.sh
@ -1,7 +0,0 @@
-#!/usr/bin/env bash
-
-set -euo pipefail
-IFS=$'\n\t'
-
-export KUBECTL_APPLYSET=true
-vals eval -fail-on-missing-key-in-map <$MANIFEST | kubectl apply -f - --prune --applyset $APPLYSET --namespace $NAMESPACE
--- a/flake.nix
+++ b/flake.nix
@ -42,13 +42,13 @@
  outputs =
    inputs@{ self, nixpkgs, flake-utils, ... }:
    flake-utils.lib.meld inputs [
-      ./flake-parts/scripts
-      ./flake-parts/checks.nix
-      ./flake-parts/deploy.nix
-      ./flake-parts/nixos.nix
-      ./flake-parts/shell.nix
-      ./flake-parts/utils
-      ./flake-parts/machines
+      ./scripts
+      ./checks.nix
+      ./deploy.nix
+      ./nixos.nix
+      ./shell.nix
+      ./utils
+      ./machines
    ] // (flake-utils.lib.eachDefaultSystem (system: {
      formatter = nixpkgs.legacyPackages.${system}.nixfmt;
    }));
--- a/flake-parts/machines/atlas.nix
+++ b/flake-parts/machines/atlas.nix
--- a/flake-parts/machines/default.nix
+++ b/flake-parts/machines/default.nix
--- a/flake-parts/machines/jefke.nix
+++ b/flake-parts/machines/jefke.nix
--- a/flake-parts/machines/lewis.nix
+++ b/flake-parts/machines/lewis.nix
--- a/flake-parts/machines/pikvm.nix
+++ b/flake-parts/machines/pikvm.nix
--- a/flake-parts/machines/talos.nix
+++ b/flake-parts/machines/talos.nix
--- a/flake-parts/machines/warwick.nix
+++ b/flake-parts/machines/warwick.nix
--- a/nixos-modules/backups.nix
+++ b/nixos-modules/backups.nix
--- a/nixos-modules/data-sharing.nix
+++ b/nixos-modules/data-sharing.nix
--- a/modules/default.nix
+++ b/modules/default.nix
@ -1,6 +1,12 @@
-{ pkgs, self, config, lib, inputs, machine, ... }: {
+{ self, pkgs, config, lib, inputs, machine, ... }: {
  imports = [
-    "${self}/nixos-modules"
+    ./storage.nix
+    ./backups.nix
+    ./networking
+    ./data-sharing.nix
+    ./monitoring
+    ./k3s
+    ./tailscale.nix
    machine.nixosModule
    inputs.disko.nixosModules.disko
    inputs.sops-nix.nixosModules.sops
@ -140,7 +146,7 @@

    sops = {
      age.keyFile = "/root/.config/sops/age/keys.txt";
-      defaultSopsFile = ./secrets/nixos.yaml;
+      defaultSopsFile = "${self}/secrets/nixos.yaml";
    };
  };
 }
--- a/nixos-modules/k3s/bootstrap.nix
+++ b/nixos-modules/k3s/bootstrap.nix
--- a/nixos-modules/k3s/default.nix
+++ b/nixos-modules/k3s/default.nix
--- a/nixos-modules/k3s/k3s-ca/client-ca.crt
+++ b/nixos-modules/k3s/k3s-ca/client-ca.crt
--- a/nixos-modules/k3s/k3s-ca/etcd/peer-ca.crt
+++ b/nixos-modules/k3s/k3s-ca/etcd/peer-ca.crt
--- a/nixos-modules/k3s/k3s-ca/etcd/server-ca.crt
+++ b/nixos-modules/k3s/k3s-ca/etcd/server-ca.crt
--- a/nixos-modules/k3s/k3s-ca/request-header-ca.crt
+++ b/nixos-modules/k3s/k3s-ca/request-header-ca.crt
--- a/nixos-modules/k3s/k3s-ca/server-ca.crt
+++ b/nixos-modules/k3s/k3s-ca/server-ca.crt
--- a/nixos-modules/monitoring/default.nix
+++ b/nixos-modules/monitoring/default.nix
--- a/nixos-modules/networking/default.nix
+++ b/nixos-modules/networking/default.nix
--- a/nixos-modules/storage.nix
+++ b/nixos-modules/storage.nix
--- a/nixos-modules/tailscale.nix
+++ b/nixos-modules/tailscale.nix
--- a/my-lib/default.nix
+++ b/my-lib/default.nix
@ -1,6 +0,0 @@
-lib: rec {
-  net = import ./net.nix lib;
-  globals = import ./globals.nix;
-
-  imagePath = name: "nix:0${globals.imageDir}/${name}.tar";
-}
--- a/my-lib/globals.nix
+++ b/my-lib/globals.nix
@ -1,65 +0,0 @@
-{
-  routerPublicIPv4 = "192.145.57.90";
-  routerPublicIPv6 = "2a0d:6e00:1a77::1";
-  bind9Ipv6 = "2a0d:6e00:1a77:30::134";
-
-  # Load balancer IPv4
-  traefikIPv4 = "192.168.30.128";
-  kmsIPv4 = "192.168.30.129";
-  inbucketIPv4 = "192.168.30.130";
-  piholeIPv4 = "192.168.30.131";
-  gitIPv4 = "192.168.30.132";
-  transmissionIPv4 = "192.168.30.133";
-  bind9IPv4 = "192.168.30.134";
-  dnsmasqIPv4 = "192.168.30.135";
-  minecraftIPv4 = "192.168.30.136";
-  jellyseerrIPv4 = "192.168.30.137";
-  syncthingIPv4 = "192.168.30.138";
-  longhornIPv4 = "192.168.30.139";
-  radarrIPv4 = "192.168.30.140";
-  prowlarrIPv4 = "192.168.30.141";
-  sonarrIPv4 = "192.168.30.142";
-  bazarrIPv4 = "192.168.30.143";
-  paperlessIPv4 = "192.168.30.144";
-  radicaleIPv4 = "192.168.30.145";
-  freshrssIPv4 = "192.168.30.146";
-  immichIPv4 = "192.168.30.147";
-  nextcloudIPv4 = "192.168.30.148";
-
-  imageDir = "/var/docker_images";
-
-  images = {
-    jellyfin = "jellyfin/jellyfin:10.9.9";
-    deluge = "linuxserver/deluge:2.1.1";
-    jellyseerr = "fallenbagel/jellyseerr:1.9.2";
-    radarr = "lscr.io/linuxserver/radarr:5.9.1";
-    prowlarr = "lscr.io/linuxserver/prowlarr:1.21.2";
-    sonarr = "lscr.io/linuxserver/sonarr:4.0.8";
-    bazarr = "lscr.io/linuxserver/bazarr:1.4.3";
-    atuin = "ghcr.io/atuinsh/atuin:18.3.0";
-    postgres14 = "postgres:14";
-    kms = "teddysun/kms:latest";
-    paperless = "ghcr.io/paperless-ngx/paperless-ngx:2.11.6";
-    redis7 = "docker.io/library/redis:7";
-    nextcloud = "nextcloud:29.0.5";
-    postgres15 = "postgres:15";
-    inbucket = "inbucket/inbucket:edge";
-    syncthing = "lscr.io/linuxserver/syncthing:1.27.10";
-    radicale = "tomsquest/docker-radicale:3.2.3.0";
-    ntfy = "binwiederhier/ntfy:v2.11.0";
-    forgejo = "codeberg.org/forgejo/forgejo:8.0.1";
-    pihole = "pihole/pihole:2024.07.0";
-    immich = "ghcr.io/immich-app/immich-server:v1.114.0";
-    immich-machine-learning = "ghcr.io/immich-app/immich-machine-learning:v1.114.0";
-    immich-redis = "docker.io/redis:6.2-alpine@sha256:e3b17ba9479deec4b7d1eeec1548a253acc5374d68d3b27937fcfe4df8d18c7e";
-    immich-postgres = "docker.io/tensorchord/pgvecto-rs:pg14-v0.2.0@sha256:90724186f0a3517cf6914295b5ab410db9ce23190a2d9d0b9dd6463e3fa298f0";
-    kitchenowl = "tombursch/kitchenowl:v0.5.2";
-    cyberchef = "mpepping/cyberchef:latest";
-    freshrss = "freshrss/freshrss:1.24.3";
-    bind9 = "ubuntu/bind9:9.18-22.04_beta";
-    dnsmasq = "dockurr/dnsmasq:2.90";
-    attic = "git.kun.is/home/atticd:fd910d91c2143295e959d2c903e9ea25cf94ba27";
-    hedgedoc = "quay.io/hedgedoc/hedgedoc:1.9.9";
-    minecraft = "itzg/minecraft-server:latest";
-  };
-}
--- a/my-lib/net.nix
+++ b/my-lib/net.nix
--- a/nixos-modules/default.nix
+++ b/nixos-modules/default.nix
@ -1,11 +0,0 @@
-{
-  imports = [
-    ./storage.nix
-    ./backups.nix
-    ./networking
-    ./data-sharing.nix
-    ./monitoring
-    ./k3s
-    ./tailscale.nix
-  ];
-}
--- a/flake-parts/nixos.nix
+++ b/flake-parts/nixos.nix
@ -16,7 +16,7 @@ in
    specialArgs = { inherit self inputs machine machines; };

    modules = [
-      "${self}/configuration.nix"
+      "${self}/modules"
      { networking.hostName = name; }
    ];
  });
--- a/flake-parts/scripts/bootstrap.sh
+++ b/flake-parts/scripts/bootstrap.sh
--- a/flake-parts/scripts/default.nix
+++ b/flake-parts/scripts/default.nix
--- a/flake-parts/scripts/gen-k3s-cert.sh
+++ b/flake-parts/scripts/gen-k3s-cert.sh
--- a/flake-parts/shell.nix
+++ b/flake-parts/shell.nix
--- a/flake-parts/utils/default.nix
+++ b/flake-parts/utils/default.nix
--- a/flake-parts/utils/globals.nix
+++ b/flake-parts/utils/globals.nix
--- a/flake-parts/utils/net.nix
+++ b/flake-parts/utils/net.nix