fix(nixfmt): Reformat

hive.nix

@@ -8,8 +8,9 @@ let
   sources' = import ./npins;
 
   # Patch sources directly
-  sources = builtins.mapAttrs (patch.base { pkgs = import sources'.nixos-unstable { }; })
+  sources =
-    .applyPatches' sources';
+    builtins.mapAttrs (patch.base { pkgs = import sources'.nixos-unstable { }; }).applyPatches'
+      sources';
 
   nix-lib = import ./lib/nix-lib;
   inherit (nix-lib) mapSingleFuse;

lib/netconf-junos/protocols.nix

@@ -28,9 +28,9 @@ in
   config.netconf.xmls.protocols = ''
     <protocols>
       <rstp operation="replace">
-        ${
+        ${concatMapStringsSep "" (
-          concatMapStringsSep "" (intf: "<interface><name>${intf}</name></interface>") config.protocols.rstp
+          intf: "<interface><name>${intf}</name></interface>"
-        }
+        ) config.protocols.rstp}
       </rstp>
     </protocols>
   '';

lib/nix-lib/nixpkgs.nix

@@ -79,7 +79,9 @@ rec {
             f here values
         );
     in
-    f [ ] [
+    f
+      [ ]
+      [
         rhs
         lhs
       ];

machines/nixos/bridge01/secrets/secrets.nix

@@ -2,6 +2,8 @@
 #
 # SPDX-License-Identifier: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "bridge01" ] [
+(import ../../../../keys).mkSecrets
+  [ "bridge01" ]
+  [
     # List of secrets for bridge01
-]
+  ]

machines/nixos/compute01/kanidm/secrets/secrets.nix

@@ -2,7 +2,9 @@
 #
 # SPDX-License-Identifier: EUPL-1.2
 
-(import ../../../../../keys).mkSecrets [ "compute01" ] [
+(import ../../../../../keys).mkSecrets
+  [ "compute01" ]
+  [
     "kanidm-password_admin"
     "kanidm-password_idm_admin"
-]
+  ]

machines/nixos/compute01/librenms/module.nix

@@ -401,7 +401,8 @@ in
           "distributed_billing" = cfg.distributedPoller.distributedBilling;
           "distributed_poller_memcached_host" = cfg.distributedPoller.memcachedHost;
           "distributed_poller_memcached_port" = cfg.distributedPoller.memcachedPort;
-          "rrdcached" = "${cfg.distributedPoller.rrdcachedHost}:${toString cfg.distributedPoller.rrdcachedPort}";
+          "rrdcached" =
+            "${cfg.distributedPoller.rrdcachedHost}:${toString cfg.distributedPoller.rrdcachedPort}";
         })
         // (lib.optionalAttrs cfg.useDistributedPollers {
           "distributed_poller" = true;

machines/nixos/compute01/outline.nix

@@ -45,7 +45,8 @@ in
 
   dgn-web.simpleProxies.outline = {
     inherit host port;
-    vhostConfig.locations."/robots.txt".return = ''200 "User-agent: *\nDisallow: /s/demarches-normaliennes/\n"'';
+    vhostConfig.locations."/robots.txt".return =
+      ''200 "User-agent: *\nDisallow: /s/demarches-normaliennes/\n"'';
   };
 
   age-secrets.autoMatch = [ "outline" ];

machines/nixos/compute01/secrets/secrets.nix

@@ -2,7 +2,9 @@
 #
 # SPDX-License-Identifier: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "compute01" ] [
+(import ../../../../keys).mkSecrets
+  [ "compute01" ]
+  [
     # List of secrets for compute01
     "arkheon-env_file"
     "bupstash-put_key"
@@ -33,4 +35,4 @@
     "telegraf-environment_file"
     "vaultwarden-environment_file"
     "zammad-secret_key_base_file"
-]
+  ]

machines/nixos/geo01/secrets/secrets.nix

@@ -2,6 +2,8 @@
 #
 # SPDX-License-Identifier: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "geo01" ] [
+(import ../../../../keys).mkSecrets
+  [ "geo01" ]
+  [
     # List of secrets for geo01
-]
+  ]

machines/nixos/geo02/secrets/secrets.nix

@@ -2,6 +2,8 @@
 #
 # SPDX-License-Identifier: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "geo02" ] [
+(import ../../../../keys).mkSecrets
+  [ "geo02" ]
+  [
     # List of secrets for geo02
-]
+  ]

machines/nixos/hypervisor01/secrets/secrets.nix

@@ -2,6 +2,8 @@
 #
 # SPDX-License-Identifer: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "hypervisor01" ] [
+(import ../../../../keys).mkSecrets
+  [ "hypervisor01" ]
+  [
 
-]
+  ]

machines/nixos/hypervisor02/secrets/secrets.nix

@@ -2,6 +2,8 @@
 #
 # SPDX-License-Identifer: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "hypervisor02" ] [
+(import ../../../../keys).mkSecrets
+  [ "hypervisor02" ]
+  [
 
-]
+  ]

machines/nixos/hypervisor03/secrets/secrets.nix

@@ -2,6 +2,8 @@
 #
 # SPDX-License-Identifer: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "hypervisor03" ] [
+(import ../../../../keys).mkSecrets
+  [ "hypervisor03" ]
+  [
 
-]
+  ]

machines/nixos/rescue01/secrets/secrets.nix

@@ -2,7 +2,9 @@
 #
 # SPDX-License-Identifier: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "rescue01" ] [
+(import ../../../../keys).mkSecrets
+  [ "rescue01" ]
+  [
     # List of secrets for rescue01
     "stateless-uptime-kuma-password"
-]
+  ]

machines/nixos/storage01/secrets/secrets.nix

@@ -2,7 +2,9 @@
 #
 # SPDX-License-Identifier: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "storage01" ] [
+(import ../../../../keys).mkSecrets
+  [ "storage01" ]
+  [
     # List of secrets for storage01
     "bupstash-put_key"
     "forgejo-mailer_password_file"
@@ -23,4 +25,4 @@
     "prometheus-uptime-kuma-apikey"
     "prometheus-web_config_file"
     "tvix-store-infra-signing-key"
-]
+  ]

machines/nixos/tower01/secrets/secrets.nix

@@ -2,6 +2,7 @@
 #
 # SPDX-License-Identifer: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "tower01" ]
+(import ../../../../keys).mkSecrets
+  [ "tower01" ]
   [
   ]

machines/nixos/vault01/secrets/secrets.nix

@@ -2,7 +2,9 @@
 #
 # SPDX-License-Identifier: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "vault01" ] [
+(import ../../../../keys).mkSecrets
+  [ "vault01" ]
+  [
     # List of secrets for vault01
     "radius-auth_token_file"
     "radius-ca_pem_file"
@@ -13,4 +15,4 @@
     "eatonmon-password_file"
     "radius-ap-radius-secret_file"
     "wg-key"
-]
+  ]

machines/nixos/web01/redirections.nix

@@ -35,8 +35,7 @@ in
       "www.interq.ens.fr" = "interq.ens.fr";
     };
 
-    temporary =
+    temporary = {
-      {
     };
 
     retired = mkSubs {

machines/nixos/web01/secrets/secrets.nix

@@ -2,7 +2,9 @@
 #
 # SPDX-License-Identifier: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "web01" ] [
+(import ../../../../keys).mkSecrets
+  [ "web01" ]
+  [
     # List of secrets for web01
     "acme-certs_secret"
     "bupstash-put_key"
@@ -12,4 +14,4 @@
     "ntfy_sh-environment_file"
     "castopod-environment_file"
     "kahulm-session_secret"
-]
+  ]

machines/nixos/web01/wordpress/default.nix

@@ -66,5 +66,6 @@ in
 
   dgn-backups.jobs.containers.settings.paths = [ "/var/lib/nixos-containers" ];
 
-  services.nginx.virtualHosts."bds.ens.fr".locations."/gestion2".return = "301 https://gestion.bds.ens.fr";
+  services.nginx.virtualHosts."bds.ens.fr".locations."/gestion2".return =
+    "301 https://gestion.bds.ens.fr";
 }

machines/nixos/web02/secrets/secrets.nix

@@ -2,9 +2,11 @@
 #
 # SPDX-License-Identifier: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "web02" ] [
+(import ../../../../keys).mkSecrets
+  [ "web02" ]
+  [
     # List of secrets for web02
     "cas_eleves-secret_key_file"
     "kadenios-secret_key_file"
     "kadenios-email_password_file"
-]
+  ]

machines/nixos/web03/secrets/secrets.nix

@@ -2,7 +2,9 @@
 #
 # SPDX-License-Identifier: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ "web03" ] [
+(import ../../../../keys).mkSecrets
+  [ "web03" ]
+  [
     # List of secrets for web03
     "bupstash-put_key"
     "dj_annuaire-secret_key_file"
@@ -20,4 +22,4 @@
     "webhook-gestiojeux_token"
     "webhook-interludes_token"
     "webhook-wikiens_token"
-]
+  ]

meta/nodes/nixos.nix

@@ -212,6 +212,13 @@
       system = "nixos";
     };
 
+    deployment = {
+      sshOptions = [
+        "-J"
+        "root@vault01.hyp01.infra.dgnum.eu"
+      ];
+    };
+
     admins = [ "ecoppens" ];
   };
 

modules/nixos/dgn-backups/keys/secrets.nix

@@ -2,9 +2,11 @@
 #
 # SPDX-License-Identifier: EUPL-1.2
 
-(import ../../../../keys).mkSecrets [ ] [
+(import ../../../../keys).mkSecrets
+  [ ]
+  [
     "compute01.key"
     "storage01.key"
     "web01.key"
     "web03.key"
-]
+  ]