colmena/README.md

# Colmena

Colmena is a simple, stateless NixOS deployment tool modeled after [NixOps](https://github.com/NixOS/nixops) and [Morph](https://github.com/DBCDK/morph), written in Rust.
It's a thin wrapper over Nix commands like `nix-instantiate` and `nix-copy-closure`, and supports parallel deployment.

Colmena is still an early prototype.

## Tutorial

Enter a shell with `colmena` with:
```
nix-shell
```

Colmena should work with your existing NixOps and Morph configurations with minimal modification.
Here is a sample `hive.nix` with two nodes, with some common configurations applied to both nodes:

```nix
{
  network = {
    # Override to pin the Nixpkgs version (recommended). This option
    # accepts one of the following:
    # - A path to a Nixpkgs checkout
    # - The Nixpkgs lambda (e.g., import <nixpkgs>)
    # - An initialized Nixpkgs attribute set
    nixpkgs = <nixpkgs>;
  };

  defaults = { pkgs, ... }: {
    # This module will be imported by all hosts
    environment.systemPackages = with pkgs; [
      vim wget curl
    ];
  };

  host-a = { name, nodes, ... }: {
    # The name and nodes parameters are supported in Colmena,
    # allowing you to reference configurations in other nodes.
    networking.hostName = name;
    time.timeZone = nodes.host-b.config.time.timeZone;

    boot.loader.grub.device = "/dev/sda";
    fileSystems."/" = {
      device = "/dev/sda1";
      fsType = "ext4";
    };
  };

  host-b = {
    # Like NixOps and Morph, Colmena will attempt to connect to
    # the remote host using the attribute name by default. You
    # can override it like:
    deployment.targetHost = "host-b.mydomain.tld";

    time.timeZone = "America/Los_Angeles";

    boot.loader.grub.device = "/dev/sda";
    fileSystems."/" = {
      device = "/dev/sda1";
      fsType = "ext4";
    };
  };
}
```

The full set of options can be found at `src/eval.nix`.
Run `colmena build` in the same directory to build the configuration, or do `colmena apply` to deploy it to all nodes.

## `colmena introspect`

Sometimes you may want to extract values from your Hive configuration for consumption in another program (e.g., [OctoDNS](https://github.com/octodns/octodns)).
To do that, create a `.nix` file with a lambda:

```nix
{ nodes, pkgs, lib, ... }:
# Feels like a NixOS module - But you can return any JSON-serializable value
lib.attrsets.mapAttrs (k: v: v.config.deployment.targetHost) nodes
```

Then you can evaluate with:

```
colmena introspect your-lambda.nix
```

## Current limitations

- It's required to use SSH keys to log into the remote hosts, and interactive authentication will not work.
- There is no option to override SSH or `nix-copy-closure` options.
- Error reporting is lacking.

## Licensing

Colmena is available under the MIT License.
Initial commit 2020-12-16 05:21:26 +01:00			`# Colmena`

More docs 2020-12-16 06:51:37 +01:00			`Colmena is a simple, stateless NixOS deployment tool modeled after [NixOps](https://github.com/NixOS/nixops) and [Morph](https://github.com/DBCDK/morph), written in Rust.`
Initial commit 2020-12-16 05:21:26 +01:00			It's a thin wrapper over Nix commands like `nix-instantiate` and `nix-copy-closure`, and supports parallel deployment.

			`Colmena is still an early prototype.`

More docs 2020-12-16 06:51:37 +01:00			`## Tutorial`

Fix Rust pinning 2020-12-18 10:57:32 +01:00			Enter a shell with `colmena` with:
More docs 2020-12-16 06:51:37 +01:00			```
Fix Rust pinning 2020-12-18 10:57:32 +01:00			`nix-shell`
More docs 2020-12-16 06:51:37 +01:00			```

			`Colmena should work with your existing NixOps and Morph configurations with minimal modification.`
			Here is a sample `hive.nix` with two nodes, with some common configurations applied to both nodes:

			```nix
			`{`
			`network = {`
			`# Override to pin the Nixpkgs version (recommended). This option`
			`# accepts one of the following:`
			`# - A path to a Nixpkgs checkout`
			`# - The Nixpkgs lambda (e.g., import <nixpkgs>)`
			`# - An initialized Nixpkgs attribute set`
			`nixpkgs = <nixpkgs>;`
			`};`

			`defaults = { pkgs, ... }: {`
			`# This module will be imported by all hosts`
			`environment.systemPackages = with pkgs; [`
			`vim wget curl`
			`];`
			`};`

			`host-a = { name, nodes, ... }: {`
			`# The name and nodes parameters are supported in Colmena,`
			`# allowing you to reference configurations in other nodes.`
			`networking.hostName = name;`
			`time.timeZone = nodes.host-b.config.time.timeZone;`

			`boot.loader.grub.device = "/dev/sda";`
			`fileSystems."/" = {`
			`device = "/dev/sda1";`
			`fsType = "ext4";`
			`};`
			`};`

			`host-b = {`
			`# Like NixOps and Morph, Colmena will attempt to connect to`
			`# the remote host using the attribute name by default. You`
			`# can override it like:`
			`deployment.targetHost = "host-b.mydomain.tld";`

			`time.timeZone = "America/Los_Angeles";`

			`boot.loader.grub.device = "/dev/sda";`
			`fileSystems."/" = {`
			`device = "/dev/sda1";`
			`fsType = "ext4";`
			`};`
			`};`
			`}`
			```

			The full set of options can be found at `src/eval.nix`.
			Run `colmena build` in the same directory to build the configuration, or do `colmena apply` to deploy it to all nodes.

Refactoring and other stuff 2020-12-18 10:27:44 +01:00			## `colmena introspect`

			`Sometimes you may want to extract values from your Hive configuration for consumption in another program (e.g., [OctoDNS](https://github.com/octodns/octodns)).`
			To do that, create a `.nix` file with a lambda:

			```nix
			`{ nodes, pkgs, lib, ... }:`
			`# Feels like a NixOS module - But you can return any JSON-serializable value`
			`lib.attrsets.mapAttrs (k: v: v.config.deployment.targetHost) nodes`
			```

			`Then you can evaluate with:`

			```
			`colmena introspect your-lambda.nix`
			```

More docs 2020-12-16 06:51:37 +01:00			`## Current limitations`

			`- It's required to use SSH keys to log into the remote hosts, and interactive authentication will not work.`
			- There is no option to override SSH or `nix-copy-closure` options.
			`- Error reporting is lacking.`

Initial commit 2020-12-16 05:21:26 +01:00			`## Licensing`

			`Colmena is available under the MIT License.`