2024-01-22 15:50:05 -05:00
|
|
|
{
|
|
|
|
arion,
|
|
|
|
config,
|
|
|
|
lib,
|
|
|
|
pkgs,
|
|
|
|
...
|
|
|
|
}: let
|
|
|
|
inherit
|
|
|
|
(lib)
|
|
|
|
filterAttrs
|
|
|
|
hasAttr
|
|
|
|
mapAttrs
|
|
|
|
mkEnableOption
|
|
|
|
mkForce
|
|
|
|
mkIf
|
|
|
|
mkOption
|
|
|
|
optionalAttrs
|
|
|
|
types
|
|
|
|
;
|
|
|
|
|
|
|
|
inherit (config.vars) mainUser;
|
|
|
|
|
|
|
|
cfg = config.arion;
|
|
|
|
in {
|
|
|
|
imports = [arion.nixosModules.arion];
|
|
|
|
|
|
|
|
options.arion = {
|
|
|
|
enable = mkEnableOption (lib.mdDoc "My custom arion config layer module");
|
|
|
|
|
2024-02-18 00:08:10 -05:00
|
|
|
# TODO: move this somewhere else
|
|
|
|
toYAML = mkOption {
|
|
|
|
type = types.anything;
|
|
|
|
readOnly = true;
|
|
|
|
default = name: attrs:
|
|
|
|
pkgs.runCommandCC name {} ''
|
|
|
|
echo '${builtins.toJSON attrs}' |
|
|
|
|
${pkgs.remarshal}/bin/remarshal --if json --of yaml > $out
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
2024-01-22 15:50:05 -05:00
|
|
|
rwDataDir = mkOption {
|
|
|
|
default = "/var/lib/arion";
|
|
|
|
type = types.str;
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
Directory to place persistent data in
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
projects = mkOption {
|
|
|
|
default = {};
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
Declarative specification of docker-compose in nix.
|
|
|
|
'';
|
|
|
|
type = types.attrs;
|
|
|
|
};
|
|
|
|
};
|
|
|
|
|
|
|
|
config = mkIf cfg.enable {
|
|
|
|
users.extraUsers.${mainUser}.extraGroups = ["docker"];
|
|
|
|
|
|
|
|
virtualisation = {
|
|
|
|
docker = {
|
|
|
|
enable = true;
|
|
|
|
storageDriver = "btrfs";
|
|
|
|
};
|
|
|
|
|
|
|
|
arion = {
|
|
|
|
backend = "docker";
|
|
|
|
|
|
|
|
projects =
|
|
|
|
mapAttrs (n: v: {
|
|
|
|
# https://docs.hercules-ci.com/arion/options
|
|
|
|
settings = {
|
|
|
|
enableDefaultNetwork = v.enableDefaultNetwork or true;
|
|
|
|
|
|
|
|
networks =
|
|
|
|
optionalAttrs (hasAttr "networks" v)
|
|
|
|
v.networks;
|
|
|
|
|
|
|
|
services =
|
|
|
|
mapAttrs (n': v': {
|
|
|
|
# https://github.com/hercules-ci/arion/issues/169#issuecomment-1301370634
|
|
|
|
build.image = let
|
|
|
|
importImage = file: pkgs.callPackage file pkgs;
|
|
|
|
in
|
|
|
|
mkForce (importImage v'.image);
|
|
|
|
|
|
|
|
service =
|
2024-02-28 22:22:14 -05:00
|
|
|
(filterAttrs (attrName: _:
|
|
|
|
attrName != "image" && attrName != "extraOptions")
|
|
|
|
v')
|
2024-01-22 15:50:05 -05:00
|
|
|
# By default set the container_name to the attrset's name
|
|
|
|
// (optionalAttrs (! hasAttr "container_name" v') {
|
|
|
|
container_name = n';
|
|
|
|
});
|
2024-02-28 22:22:14 -05:00
|
|
|
|
|
|
|
out.service =
|
|
|
|
optionalAttrs
|
|
|
|
(hasAttr "extraOptions" v')
|
|
|
|
v'.extraOptions;
|
2024-01-22 15:50:05 -05:00
|
|
|
})
|
|
|
|
v;
|
|
|
|
};
|
|
|
|
})
|
|
|
|
cfg.projects;
|
|
|
|
};
|
|
|
|
};
|
|
|
|
|
|
|
|
# Script for updating the images of all images of a compose.nix file
|
|
|
|
environment.systemPackages = with pkgs; [
|
|
|
|
(writeShellApplication {
|
|
|
|
name = "updateImages";
|
|
|
|
|
|
|
|
runtimeInputs = [
|
|
|
|
(writeShellApplication {
|
|
|
|
name = "pullImage";
|
|
|
|
runtimeInputs = [nix-prefetch-docker];
|
|
|
|
text = ''
|
|
|
|
FILE="$1"
|
2024-02-19 12:42:02 -05:00
|
|
|
|
2024-01-22 15:50:05 -05:00
|
|
|
IMAGE=$(sed -n 's/.*imageName = "\([^"]*\).*/\1/p' "$FILE")
|
|
|
|
TAG=$(sed -n 's/.*finalImageTag = "\([^"]*\).*/\1/p' "$FILE")
|
|
|
|
echo "$IMAGE $TAG"
|
|
|
|
|
2024-02-19 12:42:02 -05:00
|
|
|
if ! grep "Locked" "$FILE"; then
|
|
|
|
PREFETCH=$(nix-prefetch-docker "$IMAGE" "$TAG")
|
|
|
|
echo -e "pkgs:\npkgs.dockerTools.pullImage $PREFETCH" > "$FILE"
|
|
|
|
fi
|
2024-01-22 15:50:05 -05:00
|
|
|
'';
|
|
|
|
})
|
|
|
|
];
|
|
|
|
|
|
|
|
text = ''
|
|
|
|
DIR=''${1:-"."}
|
|
|
|
find "$DIR"/images -type f -exec pullImage {} \;
|
|
|
|
'';
|
|
|
|
})
|
|
|
|
];
|
|
|
|
};
|
|
|
|
}
|