6f4068ff5c
- acme-dns for internal DNS-01 challenges - nsd for zone rz.ens.wtf - unbound for internal usage and resolutions - dokuwiki for network documentation - gitea for this very repository and many more - keycloak for SSO over all services - monitoring (netdata, grafana/influxdb soon) - netboot for easy provisioning of other machines Co-authored-by: Ryan Lahfa <ryan.lahfa@ens.fr>
24 lines
696 B
Nix
24 lines
696 B
Nix
let
|
|
krops = builtins.fetchGit {
|
|
url = "https://cgit.krebsco.de/krops/";
|
|
};
|
|
lib = import "${krops}/lib";
|
|
pkgs = import "${krops}/pkgs" {};
|
|
source = machine: lib.evalSource [
|
|
{
|
|
config.file = toString ./machines;
|
|
nixos-config.symlink = "config/${machine}/configuration.nix";
|
|
nixpkgs.git = {
|
|
clean.exclude = [ "/.version-suffix" ];
|
|
ref = "973910f5c31b9ba6c171c33a8bd7199990b14c72"; # nixos-21.05
|
|
url = https://github.com/NixOS/nixpkgs;
|
|
};
|
|
}
|
|
];
|
|
in
|
|
{
|
|
core-services-01 = pkgs.krops.writeDeploy "deploy-core-services-01" {
|
|
source = source "core-services-01";
|
|
target = "root@core01.internal.rz.ens.wtf";
|
|
};
|
|
}
|