-
Notifications
You must be signed in to change notification settings - Fork 0
/
flake.nix
72 lines (67 loc) · 1.83 KB
/
flake.nix
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
{
inputs = {
nixpkgs.url = "github:nixos/nixpkgs/nixos-unstable";
systems.url = "github:nix-systems/default";
devenv.url = "github:cachix/devenv";
devenv.inputs.nixpkgs.follows = "nixpkgs";
};
# Nix package manager settings
# nix.settings = {
# substituters = [
# "https://devenv.cachix.org"
# "https://nix-community.cachix.org"
# "https://cache.nixos.org/"
# ];
# trusted-public-keys = [
# "nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs="
# "devenv.cachix.org-1:w1cLUi8dv3hnoSPGAuibQv+f9TZLr6cv/Hm9XgU50cw="
# ];
# };
nixConfig = {
extra-trusted-public-keys = "devenv.cachix.org-1:w1cLUi8dv3hnoSPGAuibQv+f9TZLr6cv/Hm9XgU50cw=";
extra-substituters = "https://devenv.cachix.org";
};
outputs =
{
self,
nixpkgs,
devenv,
systems,
...
}@inputs:
let
lib = nixpkgs.lib // builtins;
forEachSystem = lib.genAttrs (import systems);
vaults = import ./vaults.nix;
in
{
packages = forEachSystem (
system:
let
vaultPkgs = lib.pipe vaults [
(map (
vault:
lib.nameValuePair "${vault}-devenv-up" (self.devShells.${system}.${vault}.config.procfileScript)
))
lib.listToAttrs
];
in
vaultPkgs
# { devenv-up = self.devShells.${system}.daily-vault.config.procfileScript; }
);
devShells = forEachSystem (
system:
let
pkgs = nixpkgs.legacyPackages.${system};
mkVaultShell =
vault:
devenv.lib.mkShell {
inherit inputs pkgs;
modules = [ ./lib/mkVaultShell.nix ];
};
in
lib.genAttrs vaults mkVaultShell
);
secrets = import ./secrets.nix;
};
}