mdebray/tvl-depot
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
tvl-depot/users/wpcarro/nixos/diogenes
History
William Carroll d6725296ca fix(wpcarro/diogenes): Ensure quassel can read ACME cert 
Add quassel to the nginx group because only user=acme and group=nginx can read
/var/lib/acme/*

Change-Id: If456b8ebf43ee098cd8007c3c6235c78c1071250
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4752
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 05:33:01 +00:00
..
default.nix fix(wpcarro/diogenes): Ensure quassel can read ACME cert 2022-01-08 05:33:01 +00:00
README.md feat(wpcarro/diogenes): Nixify diogenes's Terraform configuration 2022-01-08 05:31:50 +00:00

README.md

diogenes

diogenes is a NixOS machine deployed on a Google VM. It hosts https://wpcarro.dev.

Deployment

I manage diogenes's deployment with Terraform. My current workflow looks like this (highly subject to change):

cd /tmp/terraform # or any directory that hosts terraform state
outpath=$(nix-build /depot -A users.wpcarro.nixos.diogenes)
cp <out-path> .
nix-shell -p terraform google-cloud-sdk # gcloud to authenticate if necessary
terraform init/apply