config-perso/hive.nix

let
  sources = import ./npins;
  pkgs = import sources.nixpkgs-unstable { };
  inherit (pkgs) lib;
  inherit (lib)
    mapAttrs
    mapAttrs'
    filterAttrs
    mapAttrsToList
    removeSuffix
    evalModules
    flatten
    ;

  nodes = mapAttrs' (name: _: {
    name = removeSuffix ".nix" name;
    value = import ./machines/${name};
  }) (builtins.readDir ./machines);

  meta' = evalModules {
    modules = [
      ./kat/meta.nix
      { machines = mapAttrs (_: n: n.meta) nodes; }
    ];
    specialArgs = {
      inherit pkgs sources;
    };
  };
  meta = meta'.config // {
    machines = mapAttrs (_: node: node.node_meta) meta'.config.machines;
  };

  meta-lib = self: rec {
    self-meta = meta.machines.${self};
    other-meta = filterAttrs (name: _: name != self) meta.machines;
    mkPeers =
      let
        hubs = filterAttrs (_: node: node.vpn-hub) other-meta;
        non-hubs = filterAttrs (_: node: node.wg-key != null && !node.vpn-hub) other-meta;
        all-subnets =
          [ "10.42.0.0/16" ] ++ flatten
          (map (mapAttrsToList (_: node: node.subnets)) [
            hubs
            non-hubs
          ]);
      in
      if self-meta.vpn-hub then
        mapAttrsToList (_: node: {
          AllowedIPs = [
            "${node.vpn-ip4}/32"
          ] ++ node.subnets;
          PublicKey = node.wg-key;
        }) non-hubs
      else
        mapAttrsToList (_: node: {
          AllowedIPs = all-subnets;
          PublicKey = node.wg-key;
          Endpoint = "${node.fqdn}:1194";
          PersistentKeepalive = 25;
        }) hubs;
  };
in
{
  meta = {
    nixpkgs = pkgs.path;
    specialArgs = {
      inherit sources;
      mods = import ./modules;
      users = import ./users;
      kat-path = ./kat;
    };
    nodeNixpkgs = mapAttrs (_: node: node.nixpkgs-paths.nixpkgs-src) meta.machines;
    nodeSpecialArgs = mapAttrs (name: node: {
      self-meta = node;
      meta = meta // {
        lib = meta-lib name;
      };
    }) meta.machines;
  };
  defaults =
    {
      name,
      kat-path,
      ...
    }:
    {
      imports = [ kat-path ];
      networking.hostName = name;
    };
}
// mapAttrs (_: n: n.config) nodes
nixfmt 2024-05-14 19:21:19 +02:00			`let`
npins 2024-06-01 00:28:17 +02:00			`sources = import ./npins;`
refactor(hive/meta): meta module 2024-12-15 16:19:19 +01:00			`pkgs = import sources.nixpkgs-unstable { };`
			`inherit (pkgs) lib;`
			`inherit (lib)`
			`mapAttrs`
			`mapAttrs'`
feat(meta/vpn): internal routing 2025-01-07 11:27:06 +01:00			`filterAttrs`
			`mapAttrsToList`
refactor(hive/meta): meta module 2024-12-15 16:19:19 +01:00			`removeSuffix`
			`evalModules`
feat(meta/vpn): internal routing 2025-01-07 11:27:06 +01:00			`flatten`
refactor(hive/meta): meta module 2024-12-15 16:19:19 +01:00			`;`
feat: made some node stable, and npins update 2024-12-05 17:03:42 +01:00
refactor(hive/meta): meta module 2024-12-15 16:19:19 +01:00			`nodes = mapAttrs' (name: _: {`
			`name = removeSuffix ".nix" name;`
feat: made some node stable, and npins update 2024-12-05 17:03:42 +01:00			`value = import ./machines/${name};`
			`}) (builtins.readDir ./machines);`

refactor(hive/meta): meta module 2024-12-15 16:19:19 +01:00			`meta' = evalModules {`
			`modules = [`
			`./kat/meta.nix`
			`{ machines = mapAttrs (_: n: n.meta) nodes; }`
			`];`
			`specialArgs = {`
			`inherit pkgs sources;`
			`};`
			`};`
			`meta = meta'.config // {`
			`machines = mapAttrs (_: node: node.node_meta) meta'.config.machines;`
			`};`
feat(meta/vpn): internal routing 2025-01-07 11:27:06 +01:00
			`meta-lib = self: rec {`
			`self-meta = meta.machines.${self};`
			`other-meta = filterAttrs (name: _: name != self) meta.machines;`
			`mkPeers =`
			`let`
			`hubs = filterAttrs (_: node: node.vpn-hub) other-meta;`
			`non-hubs = filterAttrs (_: node: node.wg-key != null && !node.vpn-hub) other-meta;`
			`all-subnets =`
			`[ "10.42.0.0/16" ] ++ flatten`
			`(map (mapAttrsToList (_: node: node.subnets)) [`
			`hubs`
			`non-hubs`
			`]);`
			`in`
			`if self-meta.vpn-hub then`
			`mapAttrsToList (_: node: {`
			`AllowedIPs = [`
			`"${node.vpn-ip4}/32"`
			`] ++ node.subnets;`
			`PublicKey = node.wg-key;`
			`}) non-hubs`
			`else`
			`mapAttrsToList (_: node: {`
			`AllowedIPs = all-subnets;`
			`PublicKey = node.wg-key;`
			`Endpoint = "${node.fqdn}:1194";`
			`PersistentKeepalive = 25;`
			`}) hubs;`
			`};`
nixfmt 2024-05-14 19:21:19 +02:00			`in`
			`{`
refactor(hive/meta): meta module 2024-12-15 16:19:19 +01:00			`meta = {`
			`nixpkgs = pkgs.path;`
old procmail for betamail, last version buggy 2024-07-26 21:22:44 +02:00			`specialArgs = {`
feat(meta/vpn): internal routing 2025-01-07 11:27:06 +01:00			`inherit sources;`
			`mods = import ./modules;`
			`users = import ./users;`
refactor(hive/meta): meta module 2024-12-15 16:19:19 +01:00			`kat-path = ./kat;`
old procmail for betamail, last version buggy 2024-07-26 21:22:44 +02:00			`};`
refactor(hive/meta): meta module 2024-12-15 16:19:19 +01:00			`nodeNixpkgs = mapAttrs (_: node: node.nixpkgs-paths.nixpkgs-src) meta.machines;`
feat(meta/vpn): internal routing 2025-01-07 11:27:06 +01:00			`nodeSpecialArgs = mapAttrs (name: node: {`
			`self-meta = node;`
			`meta = meta // {`
			`lib = meta-lib name;`
			`};`
			`}) meta.machines;`
modularity 2024-03-13 11:11:16 +01:00			`};`
nixfmt 2024-05-14 19:21:19 +02:00			`defaults =`
nixos-anywhere & traque stuff 2024-06-01 16:26:08 +02:00			`{`
			`name,`
refactor(hive/meta): meta module 2024-12-15 16:19:19 +01:00			`kat-path,`
nixos-anywhere & traque stuff 2024-06-01 16:26:08 +02:00			`...`
			`}:`
nixfmt 2024-05-14 19:21:19 +02:00			`{`
refactor(hive/meta): meta module 2024-12-15 16:19:19 +01:00			`imports = [ kat-path ];`
small refactor of own modules 2024-09-26 11:51:04 +02:00			`networking.hostName = name;`
nixfmt 2024-05-14 19:21:19 +02:00			`};`
passing to colmena 2024-03-12 17:26:16 +01:00			`}`
refactor(hive/meta): meta module 2024-12-15 16:19:19 +01:00			`// mapAttrs (_: n: n.config) nodes`