SelfPrivacy
/
selfprivacy-nixos-infect
mirror of https://git.selfprivacy.org/SelfPrivacy/selfprivacy-nixos-infect.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
254 Commits 17 Branches 0 Tags 327 KiB
Commit Graph

161 Commits

Author SHA1 Message Date
Alexander Tomokhov 8ce494c490 nixos-infect: update selfprivacy-nixos-config sha1 2024-01-09 23:34:34 +04:00
Alexander Tomokhov 66f61ce536 fix: no excess slash before disk device name (location) 2023-12-28 21:06:35 +04:00
Alexander Tomokhov 4866762afc selfprivacy-api git branch: userdata => flakes 2023-12-28 20:54:26 +04:00
Alexander Tomokhov f3696ab0d6 embed CONFIG_URL and NIX_VERSION inside nixos-infect 
Now you need to edit nixos-infect to update base configuration URL.
 2023-12-28 20:25:07 +04:00
Alexander Tomokhov 774bea292f STAGING_ACME is optional (default is false) 2023-12-28 20:25:07 +04:00
Alexander Tomokhov 743129d6cb uppercase PROVIDER variable value 2023-12-28 20:24:40 +04:00
Alexander Tomokhov 15f36551ad fix: absent SSH_AUTHORIZED_KEY does not cause failure 2023-12-28 20:00:44 +04:00
Alexander Tomokhov 36eb48ab3c nix flake lock /etc/nixos --override-input sp-modules path:./sp-modules 2023-12-28 05:02:04 +04:00
Alexander Tomokhov 374711f324 optional variables: NIXOS_CONFIG_ID and VOLUME_DEV_PATH 2023-12-28 03:12:43 +04:00
Alexander Tomokhov 91073a50a3 additional check for 2nd volume 2023-12-28 01:02:49 +04:00
Alexander Tomokhov 0ec4fc7d5b generate volumes and location values (disk device name) 2023-12-28 00:28:53 +04:00
Alexander Tomokhov 83fe55b86e nixos-infect: sort variables 2023-12-27 20:59:00 +04:00
Alexander Tomokhov c31521e1ca do not pass DB_PASSWORD, but generate 2023-12-27 20:58:59 +04:00
Alexander Tomokhov 967377f171 pass ENCODED_PASSWORD to nixos-infect instead of USER_PASS 2023-12-27 17:59:09 +04:00
Alexander Tomokhov 4df84db453 curl --fail 2023-12-27 14:13:40 +04:00
Alexander Tomokhov c95b9d0f62 /etc/nixos#sp-nixos => /etc/nixos#default 2023-12-27 14:05:09 +04:00
Alexander Tomokhov 05e395d6af nix flake lock /etc/nixos --update-input sp-modules 2023-12-27 13:20:50 +04:00
Alexander Tomokhov d099b7bd11 system.stateVersion = lib.mkDefault "$release" 2023-12-23 00:14:33 +04:00
Alexander Tomokhov 9cd6207238 add stateVersion to userdata.json 2023-12-22 23:13:04 +04:00
Alexander Tomokhov 1344aaa92c `nix flake lock --override-input sp-modules` instead of --update-input 2023-12-20 16:41:42 +04:00
Alexander Tomokhov 0e6d5414f5 CF_TOKEN => DNS_PROVIDER_TOKEN 2023-12-20 16:36:14 +04:00
Alexander Tomokhov f3e19457ee do not write resticPassword to secrets.json 2023-12-16 09:44:07 +04:00
Alexander Tomokhov fa062875e7 add questionable availableKernelModules for DigitalOcean deployment 2023-12-11 21:17:42 +04:00
Alexander Tomokhov 528d5de6dd networking configuration for DigitalOcean 2023-12-11 20:34:09 +04:00
Alexander Tomokhov 158c711f66 fix hashedMasterPassword: install missing `mkpasswd` via `whois` package 2023-12-11 13:40:47 +04:00
Alexander Tomokhov ba181fb162 generate deployment.nix with system.stateVersion 2023-12-11 05:35:58 +04:00
Alexander Tomokhov 8de4c0908f pass SSH_AUTHORIZED_KEY and merge with userdata.json 2023-12-05 05:28:15 +04:00
Alexander Tomokhov 55149c1af0 infect: fix typo in comment 2023-12-03 07:08:59 +04:00
Alexander Tomokhov ccf32a3172 drone: pass USER_PASS without base64 2023-12-03 06:41:19 +04:00
Alexander Tomokhov 347ee5ca12 fix typo in generated secrets.json 2023-11-22 23:50:09 +04:00
Alexander Tomokhov 5fc8a090f7 add github issue link to the comment about subflake 2023-11-22 22:26:58 +04:00
Alexander Tomokhov 4cf9f98105 remove installed Nix after switch-to-configuration boot 2023-11-22 01:49:08 +04:00
Alexander cae1b64689 fix infect: lustrate /etc/selfprivacy/secrets.json 2023-11-21 15:28:21 +02:00
Alexander Tomokhov 401f6e0789 do not remove original OS stuff (it will be moved to /old-root anyway) 2023-11-21 06:31:07 +04:00
Alexander Tomokhov 6645c8e61b Revert "add users.users.root.hashedPassword for testing purposes" 
This reverts commit 31dfa8eb4a.
 2023-11-21 03:01:14 +04:00
Alexander Tomokhov 7e79a26715 do not keep root/.nix-defexpr/channels after reboot 2023-11-21 03:01:09 +04:00
Alexander Tomokhov 5169969e03 fix passing HOSTNAME and DOMAIN variables to userdata.json 2023-11-21 01:18:51 +04:00
Alexander Tomokhov bc0f59695c exclude dot files when extracting top-level flake 2023-11-21 00:57:54 +04:00
Alexander Tomokhov 73b5863968 fix isEFI variable assignment 2023-11-21 00:25:34 +04:00
Alexander Tomokhov 31dfa8eb4a add users.users.root.hashedPassword for testing purposes 2023-11-20 19:15:24 +04:00
Alexander Tomokhov c58597c4d7 comment about flake lock and subflake 2023-11-20 18:59:00 +04:00
Alexander Tomokhov daf4390cc9 do not cd into ${LOCAL_FLAKE_DIR} 2023-11-18 19:28:33 +04:00
Alexander Tomokhov 4d62fb57b8 fix NO_REBOOT check in the presense of the "nounset" shell option 2023-11-18 18:21:38 +04:00
Alexander Tomokhov c51aece2b9 fix switch-to-configuration boot exit code check 2023-11-18 17:43:36 +04:00
Alexander Tomokhov 4c0072fa7c do not install wget 2023-11-18 17:36:06 +04:00
Alexander Tomokhov 89b1f212ea do not activate or switch configuration (only boot) 2023-11-18 17:28:19 +04:00
Alexander Tomokhov 3fa57fc77f rm -v -rf /etc/{dbus-1,terminfo,systemd} 2023-11-18 08:58:34 +04:00
Alexander Tomokhov 5c8f67f61b without double quotes 2023-11-18 08:35:23 +04:00
Alexander Tomokhov 9f23164bda --extra-experimental-features "nix-command flakes" 2023-11-18 08:20:26 +04:00
Alexander Tomokhov 04260e0852 nix flake lock --update-input sp-modules 2023-11-18 08:15:13 +04:00