diff --git a/morph/grid/local/arion-compose.nix b/morph/grid/local/arion-compose.nix index 1f8eb2092e1aa66d1d95a2b41760ef198323ac70..b8c7f87913074cdbd928ce019019e88c4264b41f 100644 --- a/morph/grid/local/arion-compose.nix +++ b/morph/grid/local/arion-compose.nix @@ -27,7 +27,11 @@ let node = { monitor-ip, public-ip }: { pkgs, lib, ...}: { image.name = "localhost/nixos-test"; nixos.useSystemd = true; - service.useHostStore = true; + + #service.useHostStore = true; + image.includeStorePaths = false; + service.volumes = ["nix:/nix:ro"]; + out.service = { networks.privatestorage.ipv4_address = public-ip; }; @@ -43,16 +47,17 @@ let config = { system.stateVersion = lib.mkDefault "19.09"; monitoringvpnIPv4 = monitor-ip; + services.openssh.enable = lib.mkForce false; }; }; }; - + storage-node = { monitor-ip, public-ip }@args: { pkgs, lib, ...}: { imports = [ (node args) ]; nixos.configuration = { imports = [ gridlib.storage - (gridlib.customize-storage config) + (gridlib.customize-storage config) ]; }; }; @@ -62,13 +67,20 @@ in services.storage2 = storage-node { monitor-ip = "172.23.23.13"; public-ip = "10.88.2.31"; }; services.payment = { pkgs, lib, ...}: { imports = [ (node { monitor-ip = "172.23.23.11"; public-ip = "10.88.2.32"; }) ]; - nixos.configuration = { + nixos.configuration = {config, ...}: { imports = [ gridlib.issuer - (gridlib.customize-issuer (config // { + (gridlib.customize-issuer (rawConfig // { monitoringvpnIPv4 = "172.23.23.11"; })) ]; + environment.etc = { + "secrets/payments-localdev-ssl" = { + mode = "direct-symlink"; + source = "${config.deployment.privateKeyPath}/payments-localdev-ssl"; + }; + }; + services.private-storage-issuer.tls = lib.mkForce false; }; }; docker-compose.raw = { diff --git a/nixpkgs-2105.nix b/nixpkgs-2105.nix index 536d913b89ba6a57d8d683381ea1c8f40e026b4f..dd54dfd569e458f370b9a5d839873f2fc4871515 100644 --- a/nixpkgs-2105.nix +++ b/nixpkgs-2105.nix @@ -1 +1,3 @@ -import (builtins.fetchTarball (builtins.fromJSON (builtins.readFile ./nixpkgs-2105.json))) +let pkgs = import <nixpkgs> {}; +in +import (pkgs.fetchzip (pkgs.lib.importJSON ./nixpkgs-2105.json)) diff --git a/nixpkgs-ps.json b/nixpkgs-ps.json index 58add30734e8f7b9b2840a9be38693ceb6a4249d..651237d6844f573bde6880b40a7862ddf77d2890 100644 --- a/nixpkgs-ps.json +++ b/nixpkgs-ps.json @@ -1,4 +1,4 @@ { "name": "nixpkgs" -, "url": "https://github.com/PrivateStorageio/nixpkgs/archive/5ebd5af2d5c6caf23735c8c0e6bc27357fa8d2a8.tar.gz" -, "sha256": "1g2bvs8prqjskzv8s1qmh36k7rmj98jib0syqbrq02xxzw5dpqb4" +, "url": "https://github.com/tp-la/nixpkgs/archive/f0dbe36042a70e3601f287a887274fe82e3a95fd.tar.gz" +, "sha256": "1lvmc1d5c36hsl4hir1z1bv4y7yvik6wky7dzzan2bscgbvnsm7x" } diff --git a/nixpkgs-ps.nix b/nixpkgs-ps.nix index d98a53843052fda824f4ed7e34db50524df36ce2..4048abb14707c42ecb5e124907d9a6a5532bd7cd 100644 --- a/nixpkgs-ps.nix +++ b/nixpkgs-ps.nix @@ -1 +1,3 @@ -import (builtins.fetchTarball (builtins.fromJSON (builtins.readFile ./nixpkgs-ps.json))) +let pkgs = import <nixpkgs> {}; +in +import (pkgs.fetchzip (pkgs.lib.importJSON ./nixpkgs-ps.json)) diff --git a/shell.nix b/shell.nix index 09a5746626e0818e7910b178e2d2767696744c48..1cdd35c2de63c75b163227e1f962680a360a9cc9 100644 --- a/shell.nix +++ b/shell.nix @@ -1,13 +1,15 @@ let release2105 = import ./nixpkgs-2105.nix { }; in -{ pkgs ? release2105 }: +{ pkgs ? release2105 +, vagrant ? true +}: pkgs.mkShell { NIX_PATH = "nixpkgs=${pkgs.path}"; buildInputs = [ pkgs.arion pkgs.jp + pkgs.just pkgs.morph - pkgs.vagrant - ]; + ] ++ pkgs.lib.optional vagrant pkgs.vagrant; }