mdebray/tvl-depot
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
1468 commits 5 branches 0 tags 172 MiB
Commit graph

1468 commits

This branch
This branch
All branches
Author SHA1 Message Date
Vincent Ambo
8ffe811d46 feat(services): Add nixcon-demo service with simple web server 2019-10-26 13:27:56 +02:00
Vincent Ambo
2be1fff251 feat(third_party): Add naersk to package set 2019-10-26 13:27:41 +02:00
Vincent Ambo
9eabf6236f fix: Enable building of broken packages 
Happstack is currently erroneously (afaict) marked as broken.
 2019-10-26 12:10:21 +02:00
Vincent Ambo
374d55d190 chore(k8s): Bump deployed Nixery version 2019-10-26 12:02:55 +02:00
Vincent Ambo
2e4c630f64
Merge pull request #7 from tazjin/chore/bump-19.09 
Update nixpkgs set to NixOS 19.09
 2019-10-25 18:48:12 +01:00
Vincent Ambo
d35debf882 chore: Bump Nixery version & package set configuration 2019-10-25 15:52:23 +02:00
Vincent Ambo
9081e4aae4 chore: Bump nixpkgs and use Terraform from stable 2019-10-25 10:03:52 +02:00
Vincent Ambo
d290684669 refactor(build): Only build projects explicitly set as CI projects 2019-09-22 17:21:35 +01:00
Vincent Ambo
2bc1bedd9e chore(gemma): Mark gemma as broken (again) 
Something broke in one of the Lisp dependencies (again).
 2019-09-22 17:20:00 +01:00
Vincent Ambo
3a79e8b932 refactor(build): Add ciProjects attribute for CI builds 
This attribute contains a list of all derivations that should be built
by the CI for this repository.

This includes all of my own packages that are not marked as broken, as
well as select third-party packages.
 2019-09-22 17:19:13 +01:00
Vincent Ambo
5b446efb66 chore(tazblog): Remove more unneeded dependencies 2019-09-22 17:05:24 +01:00
Vincent Ambo
2fceba1618 chore(k8s): Bump deployed Nixery version 2019-09-21 15:46:58 +01:00
Vincent Ambo
415dc01e5e chore: Bump Nix channel to a more recent version 
This version has Nixery popularity data available.
 2019-09-21 15:41:19 +01:00
Vincent Ambo
bcdd2d3fcb chore(third_party): Bump Nixery version 2019-09-21 15:39:45 +01:00
Vincent Ambo
4c3f27b9a7 refactor(k8s): Parameterise the nginx version 2019-09-21 15:37:44 +01:00
Alex Rice
5f6b51cce4 test: add eitherN test 2019-09-19 15:56:39 +01:00
Alex Rice
13cc0d3d48 feat: add n-ary either 2019-09-19 15:56:39 +01:00
Michael Fellinger
7b1e389c66 Add path type 2019-09-17 15:29:39 +01:00
Vincent Ambo
afd2fd5058 docs(README): Add usage information to README 
This fixes #2.
 2019-09-14 13:09:37 +01:00
Vincent Ambo
52fabe4423 fix(k8s): Reinsert passLookup newline after kontemplate trims it 
SSH can not read the key without the trailing newline. Ideally
kontemplate would expose a toggle for this.
 2019-09-04 16:59:38 +01:00
Vincent Ambo
b41be36bb7
Merge pull request #6 from tazjin/fix/nixery-secrets-namespace 
Fix Nixery resources namespace & bump kontemplate
 2019-09-04 14:18:08 +01:00
Vincent Ambo
16b317fa5a chore: Update kontemplate to v1.8.0 
This version is agnostic of the working directory even if
insertFile/insertTemplate are used, which makes it a lot nicer to work
with in this repository structure.
 2019-09-04 12:58:04 +01:00
Vincent Ambo
064f65dec2 chore: Update image & Homebrew formula for 1.8.0 release 2019-09-04 12:52:29 +01:00
Vincent Ambo
6c3b29943c fix(build): Explicitly patch interpreter shebangs in build 2019-09-04 11:58:58 +01:00
Vincent Ambo
1cdfcbf879 chore(image): Bump alpine, kubectl and pass 2019-09-04 11:58:58 +01:00
Vincent Ambo
e7cf4668a2 chore: Bump Nix channel used for release builds 
Bumps the channel to a recent NixOS 19.03 commit.
 2019-09-04 11:58:58 +01:00
Vincent Ambo
fad8dfcef6 chore(build): Bump version to 1.8.0 2019-09-04 11:58:58 +01:00
Vincent Ambo
7b9ae4831d chore: Update copyright headers to 2019 2019-09-04 11:58:58 +01:00
Vincent Ambo
5b82bc60fc chore: Update dependency versions 2019-09-04 11:58:58 +01:00
Vincent Ambo
d0f52766b3 fix(context): Ensure resource set paths are made absolute 
Resolving of files (for `insertFile` and `insertTemplate`) should
always be relative to the resource set location, the previous
behaviour was considered a bug.

This is fixed by ensuring that resource set paths are absolute at
context loading time.
 2019-09-04 11:15:58 +01:00
Vincent Ambo
56f9e37755 fix(k8s): Move nixery-secrets to the correct namespace 2019-09-04 10:34:20 +01:00
Vincent Ambo
628cec3433
Merge pull request #5 from tazjin/feat/cloud-kms-secrets 
Introduce secrets management via Google Cloud KMS
 2019-09-03 16:26:17 +01:00
Vincent Ambo
283951388c feat(k8s): Insert Nixery's secrets via kontemplate 
Instead of having a manually prepared secret, use Cloud KMS (as per
the previous commits) to decrypt the in-repo secrets and template them
into the Secret resource in Kubernetes.

Not all of the values are actually secret, it has thus become a bit
easier to edit the known hosts, SSH config and such now.
 2019-09-03 16:12:30 +01:00
Vincent Ambo
0bc548e75e feat(secrets): Check in secrets required by Nixery 2019-09-03 16:12:30 +01:00
Vincent Ambo
bcd7710be5 feat(tools): Introduce pass-compatible wrapper using Cloud KMS 
Adds a shell script that supports a subset of the 'pass' interface for
compatibility with kontemplate, and wraps kontemplate in a script that
places this version on the PATH.

This makes it possible to use Cloud KMS encrypted secrets with kontemplate.
 2019-09-03 16:12:30 +01:00
Vincent Ambo
abd5d7538c feat(gcp): Create Cloud KMS resources for encrypting secrets 
The idea here is to use Cloud KMS and a shell script that mimics
'pass' to trick kontemplate into using Cloud KMS to decrypt secrets.
 2019-09-03 16:12:30 +01:00
Vincent Ambo
eb43ba75d2 chore(gcp): Remove monorepo repository 
The repository is now public on Github.
 2019-09-03 16:12:30 +01:00
Vincent Ambo
be28462a8a
Merge pull request #4 from tazjin/fix/blog-substitutes 
fix(tazblog): Explicitly allow substitutes for the blog
 2019-09-03 01:11:55 +01:00
Vincent Ambo
0d93594347 fix(tazblog): Explicitly allow substitutes for the blog 
Not entirely sure which part of the setup set this to 'false', but
this is potentially the key for why tazblog ends up being rebuilt all
the time.
 2019-09-03 00:43:49 +01:00
Vincent Ambo
5e4157e4a2 chore(k8s): Update deployed Nixery version 2019-09-03 00:31:09 +01:00
Vincent Ambo
d9a0f07c73 chore(third_party): Bump Nixery version 2019-09-03 00:25:40 +01:00
Vincent Ambo
3a4d8544fe
Merge pull request #3 from tazjin/chore/pin-travis-nix 
Pin Nix version in Travis builds
 2019-09-02 22:54:58 +01:00
Vincent Ambo
cfeb6e57c7 chore(tazblog): Clean up unneeded files 2019-09-02 22:34:06 +01:00
Vincent Ambo
68d14b6cfc chore(gemma): Delete old image build configuration 2019-09-02 22:06:55 +01:00
Vincent Ambo
8ae6cb2b95 chore: Pin Nix version in Travis builds 
There are some unexpected cache misses in the Travis builds and I
suspect this might be due to mismatching Nix versions.
 2019-09-02 21:58:39 +01:00
Vincent Ambo
d577629b5b fix(k8s): Add nginx route for load-balancer health checks 2019-09-02 20:16:49 +01:00
Vincent Ambo
f2e0f3ee27 chore(third_party): Remove git-appraise 
Not actually in use here ...
 2019-09-02 20:01:25 +01:00
Vincent Ambo
2f239426aa
Merge pull request #2 from tazjin/refactor/nixos-nginx-cleanup 
Remove old NixOS config and move oslo.pub
 2019-09-02 19:04:28 +01:00
Vincent Ambo
e2feae3387 fix(k8s): nginx does not need to be pinned to gitHEAD 2019-09-02 18:42:18 +01:00
Vincent Ambo
07a17501cc chore(k8s): Point Nixery at public depot URL 2019-09-02 18:38:24 +01:00