Mic92/stockholm
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Merge remote-tracking branch 'prism/master'

Browse Source
This commit is contained in:
tv 2020-09-08 22:19:15 +02:00
commit f3aac671f8
27 changed files with 367 additions and 56 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
.gitlab-ci.yml
View File

@ -10,8 +10,12 @@ before_script:
- chmod 600 ~/.ssh/gitlab_deploy.key - chmod 600 ~/.ssh/gitlab_deploy.key
- echo "$ssh_git_shackspace_serverkey" >> ~/.ssh/known_hosts - echo "$ssh_git_shackspace_serverkey" >> ~/.ssh/known_hosts
# import secret key for secrets # import secret key for secrets
- which gpg
- which gpg2
- echo "$secrets_gpg_key" | gpg --import - echo "$secrets_gpg_key" | gpg --import
deployment test: deployment test:
tags:
- nix
stage: test stage: test
script: script:
- GIT_SSH_COMMAND="ssh -i ~/.ssh/gitlab_deploy.key" git clone git@ssh.git.shackspace.de:rz/secrets.git ~/brain - GIT_SSH_COMMAND="ssh -i ~/.ssh/gitlab_deploy.key" git clone git@ssh.git.shackspace.de:rz/secrets.git ~/brain
@ -21,6 +25,8 @@ deployment test:
- $(nix-build krebs/krops.nix --no-out-link --argstr name puyak --argstr target /tmp -A test) - $(nix-build krebs/krops.nix --no-out-link --argstr name puyak --argstr target /tmp -A test)
nix-shell test: nix-shell test:
stage: test stage: test
tags:
- nix
script: script:
- nix-shell --pure --command 'true' -p stdenv && echo success - nix-shell --pure --command 'true' -p stdenv && echo success
- nix-shell --pure --command 'false' -p stdenv || echo success - nix-shell --pure --command 'false' -p stdenv || echo success
@ -29,6 +35,9 @@ nix-shell test:
- gpg --version - gpg --version
- curl --version - curl --version
wolf deployment: wolf deployment:
tags:
- shacklan
- nix
stage: deploy stage: deploy
script: script:
- cp ~/.ssh/gitlab_deploy.key ~/.ssh/id_rsa - cp ~/.ssh/gitlab_deploy.key ~/.ssh/id_rsa
@ -44,6 +53,9 @@ wolf deployment:
- .gitmodules - .gitmodules
puyak deployment: puyak deployment:
stage: deploy stage: deploy
tags:
- shacklan
- nix
script: script:
- cp ~/.ssh/gitlab_deploy.key ~/.ssh/id_rsa - cp ~/.ssh/gitlab_deploy.key ~/.ssh/id_rsa
- git clone git@ssh.git.shackspace.de:rz/secrets.git ~/brain - git clone git@ssh.git.shackspace.de:rz/secrets.git ~/brain
@ -58,6 +70,8 @@ puyak deployment:
- .gitmodules - .gitmodules
nur-packages makefu: nur-packages makefu:
stage: deploy stage: deploy
tags:
- nix
script: script:
- git reset --hard origin/master - git reset --hard origin/master
- git filter-branch -f --prune-empty --subdirectory-filter makefu/5pkgs HEAD - git filter-branch -f --prune-empty --subdirectory-filter makefu/5pkgs HEAD

0
krebs/0tests/data/secrets/gollum.id_ed25519 Normal file
View File

2
krebs/1systems/puyak/config.nix
View File

@ -84,7 +84,7 @@
''; '';
users.users.joerg = { users.users.joerg = {
openssh.authorizedKeys.keys = [ config.krebs.users.Mic92.pubkey ]; openssh.authorizedKeys.keys = [ config.krebs.users.mic92.pubkey ];
isNormalUser = true; isNormalUser = true;
shell = "/run/current-system/sw/bin/zsh"; shell = "/run/current-system/sw/bin/zsh";
}; };

2
krebs/2configs/shack/gitlab-runner.nix
View File

@ -14,6 +14,8 @@ in
## registrationConfigurationFile contains: ## registrationConfigurationFile contains:
# CI_SERVER_URL=<CI server URL> # CI_SERVER_URL=<CI server URL>
# REGISTRATION_TOKEN=<registration secret> # REGISTRATION_TOKEN=<registration secret>
# RUNNER_TAG_LIST=nix,shacklan
# RUNNER_NAME=stockholm-runner-$name
registrationConfigFile = <secrets/shackspace-gitlab-ci>; registrationConfigFile = <secrets/shackspace-gitlab-ci>;
#gracefulTermination = true; #gracefulTermination = true;
}; };

2
krebs/2configs/shack/glados/multi/wasser.nix
View File

@ -2,7 +2,7 @@
# switch.crafting_giesskanne_relay # switch.crafting_giesskanne_relay
let let
glados = import ../lib; glados = import ../lib;
seconds = 5; seconds = 10;
wasser = "switch.crafting_giesskanne_relay"; wasser = "switch.crafting_giesskanne_relay";
in in
{ {

4
krebs/2configs/shack/share.nix
View File

@ -33,6 +33,10 @@
printing = bsd printing = bsd
printcap name = /dev/null printcap name = /dev/null
disable spoolss = yes disable spoolss = yes
# for legacy systems
client min protocol = NT1
server min protocol = NT1
''; '';
}; };
} }

83
krebs/2configs/wiki.nix
View File

@ -1,9 +1,41 @@
{ config, ... }: { config, pkgs, ... }:
with import <stockholm/lib>;
let
setupGit = ''
export PATH=${makeBinPath [ pkgs.git ]}
export GIT_SSH_COMMAND='${pkgs.openssh}/bin/ssh -i ${config.krebs.gollum.stateDir}/.ssh/id_ed25519'
repo='git@localhost:wiki'
cd ${config.krebs.gollum.stateDir}
if ! url=$(git config remote.origin.url); then
git remote add origin "$repo"
elif test "$url" != "$repo"; then
git remote set-url origin "$repo"
fi
'';
pushGollum = pkgs.writeDash "push_gollum" ''
${setupGit}
git fetch origin
git merge --ff-only origin/master
'';
pushCgit = pkgs.writeDash "push_cgit" ''
${setupGit}
git push origin master
'';
in
{ {
services.gollum = { krebs.gollum = {
enable = true; enable = true;
extraConfig = ''
Gollum::Hook.register(:post_commit, :hook_id) do |committer, sha1|
system('${pushCgit}')
end
'';
}; };
networking.firewall.allowedTCPPorts = [ 80 ]; networking.firewall.allowedTCPPorts = [ 80 ];
services.nginx = { services.nginx = {
enable = true; enable = true;
@ -16,4 +48,51 @@
''; '';
}; };
}; };
krebs.git = {
enable = true;
cgit.settings = {
root-title = "krebs repos";
};
rules = with git; [
{
user = [
{
name = "gollum";
pubkey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMXbjDnQWg8EECsNRZZWezocMIiuENhCSQFcFUXcsOQ6";
}
] ++ (attrValues config.krebs.users);
repo = [ config.krebs.git.repos.wiki ];
perm = push ''refs/heads/master'' [ create merge ];
}
];
repos.wiki = {
public = true;
name = "wiki";
hooks = {
post-receive = ''
${pkgs.git-hooks.irc-announce {
channel = "#xxx";
refs = [
"refs/heads/master"
];
nick = config.networking.hostName;
server = "irc.r";
verbose = true;
}}
/run/wrappers/bin/sudo -S -u gollum ${pushGollum}
'';
};
};
};
krebs.secret.files.gollum = {
path = "${config.krebs.gollum.stateDir}/.ssh/id_ed25519";
owner = { name = "gollum"; };
source-path = "${<secrets/gollum.id_ed25519>}";
};
security.sudo.extraConfig = ''
git ALL=(gollum) NOPASSWD: ${pushGollum}
'';
} }

1
krebs/3modules/default.nix
View File

@ -27,6 +27,7 @@ let
./github-known-hosts.nix ./github-known-hosts.nix
./git.nix ./git.nix
./go.nix ./go.nix
./gollum.nix
./hidden-ssh.nix ./hidden-ssh.nix
./hosts.nix ./hosts.nix
./htgen.nix ./htgen.nix

4
krebs/3modules/external/default.nix vendored
View File

@ -465,9 +465,9 @@ in {
mail = "kieran.meinhardt@gmail.com"; mail = "kieran.meinhardt@gmail.com";
pubkey = ssh-for "kmein"; pubkey = ssh-for "kmein";
}; };
Mic92 = { mic92 = {
mail = "joerg@thalheim.io"; mail = "joerg@thalheim.io";
pubkey = ssh-for "Mic92"; pubkey = ssh-for "mic92";
}; };
qubasa = { qubasa = {
mail = "luis.nixos@gmail.com"; mail = "luis.nixos@gmail.com";

69
krebs/3modules/external/mic92.nix vendored
View File

@ -11,7 +11,7 @@ with import <stockholm/lib>;
in { in {
hosts = mapAttrs hostDefaults { hosts = mapAttrs hostDefaults {
amy = { amy = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = rec { nets = rec {
internet = { internet = {
ip4.addr = "129.215.165.57"; ip4.addr = "129.215.165.57";
@ -44,7 +44,7 @@ in {
}; };
}; };
clara = { clara = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = rec { nets = rec {
internet = { internet = {
ip4.addr = "129.215.165.58"; ip4.addr = "129.215.165.58";
@ -77,7 +77,7 @@ in {
}; };
}; };
dimitrios = { dimitrios = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = { nets = {
retiolum = { retiolum = {
ip4.addr = "10.243.29.183"; ip4.addr = "10.243.29.183";
@ -98,7 +98,7 @@ in {
}; };
}; };
donna = { donna = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = rec { nets = rec {
internet = { internet = {
ip4.addr = "129.215.165.54"; ip4.addr = "129.215.165.54";
@ -132,7 +132,7 @@ in {
}; };
}; };
dpdkm = { dpdkm = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = rec { nets = rec {
retiolum = { retiolum = {
ip4.addr = "10.243.29.173"; ip4.addr = "10.243.29.173";
@ -156,7 +156,7 @@ in {
}; };
}; };
herbert = { herbert = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = rec { nets = rec {
retiolum = { retiolum = {
addrs = [ addrs = [
@ -179,7 +179,7 @@ in {
}; };
}; };
inspector = { inspector = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = rec { nets = rec {
internet = { internet = {
ip4.addr = "141.76.44.154"; ip4.addr = "141.76.44.154";
@ -208,7 +208,7 @@ in {
}; };
}; };
eddie = { eddie = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = rec { nets = rec {
internet = { internet = {
# eddie.thalheim.io # eddie.thalheim.io
@ -242,7 +242,7 @@ in {
}; };
}; };
eve = { eve = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = rec { nets = rec {
internet = { internet = {
# eve.thalheim.io # eve.thalheim.io
@ -273,13 +273,17 @@ in {
Pxol8FwH5+Q72bLtvg5Zva8D0Vx2U1jYSHEkRDDzaS5Z6Fus+zeZVMsCAwEAAQ== Pxol8FwH5+Q72bLtvg5Zva8D0Vx2U1jYSHEkRDDzaS5Z6Fus+zeZVMsCAwEAAQ==
-----END RSA PUBLIC KEY----- -----END RSA PUBLIC KEY-----
''; '';
tinc.subnets = [
# ohorn lan # ohorn lan
tinc.subnets = [ "fd42:4492:6a6d:500:8526:2adf:7451:8bbb" ]; "fd42:4492:6a6d:500:8526:2adf:7451:8bbb"
# docker network
"42:0000:002b:1605:3::/80"
];
}; };
}; };
}; };
martha = { martha = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = rec { nets = rec {
internet = { internet = {
ip4.addr = "129.215.165.53"; ip4.addr = "129.215.165.53";
@ -313,7 +317,7 @@ in {
}; };
}; };
matchbox = { matchbox = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = { nets = {
retiolum = { retiolum = {
ip4.addr = "10.243.29.176"; ip4.addr = "10.243.29.176";
@ -339,7 +343,7 @@ in {
}; };
}; };
rock = { rock = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = { nets = {
retiolum = { retiolum = {
ip4.addr = "10.243.29.171"; ip4.addr = "10.243.29.171";
@ -363,7 +367,7 @@ in {
}; };
}; };
rose = { rose = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = rec { nets = rec {
internet = { internet = {
ip4.addr = "129.215.165.52"; ip4.addr = "129.215.165.52";
@ -397,7 +401,7 @@ in {
}; };
}; };
turingmachine = { turingmachine = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = { nets = {
retiolum = { retiolum = {
ip4.addr = "10.243.29.168"; ip4.addr = "10.243.29.168";
@ -425,7 +429,7 @@ in {
}; };
}; };
harsha = { harsha = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = { nets = {
retiolum = { retiolum = {
ip4.addr = "10.243.29.184"; ip4.addr = "10.243.29.184";
@ -446,22 +450,35 @@ in {
}; };
}; };
eva = { eva = {
owner = config.krebs.users.Mic92; owner = config.krebs.users.mic92;
nets = { nets = rec {
internet = {
# eva.thalheim.io
ip4.addr = "52.59.172.193";
ip6.addr = "2a05:d014:301:a601:ef0e:5434:d814:b8ed";
aliases = [ "eva.i" ];
};
retiolum = { retiolum = {
via = internet;
ip4.addr = "10.243.29.185"; ip4.addr = "10.243.29.185";
aliases = [ aliases = [
"eva.r" "eva.r"
]; ];
tinc.pubkey = '' tinc.pubkey = ''
-----BEGIN RSA PUBLIC KEY----- -----BEGIN PUBLIC KEY-----
MIIBCgKCAQEAqIc+ozq3hKHMe/X3v4j+6or8LMjEV7MtQ8/+n00xpG4NkI4G38Bv MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyHptaExEcSUjEJ+RH33h
3nmAcV7OhN6of0fr0psbBmym+2VxCZbpl8E3g1GWSKpAvlmP/9v4wDVdrADaTvXC uRK0Ttq8mJLDosWFYcoQkcL9S54aO9kF1gRJAKPBHoOt/IGeOxg2LNYWK6UjWfUy
pzCxejtCwEhKLisnMwCMJCuUPbIsSBU+IQDPKP7NP0yY5VapgW3Xl3qXpnehCW1r LB9c42EQ1wWZ2jSJ0LJgYzjR9cp3dlo9aHSa//O6p6eLpXRo9QLf8+aIWhNW5+BG
NBZjZASnhSXcJRLJayEDN6uBviYrnnfbrHOx4fPcjQPTHX5RYr3EbgGZQO9xki44 sLIMR5b6Ngc2l8xQS+wvMmvTWJt3LyfQ6AKiKwCjeyrUFiuw0VWSn1I6n7H+CZBZ
9dKT4EA95lupTqC3wzuQbaNpvIuVzmggiDY/NsBIVh0/2XjGnO54wtCEPudaLnWd f/UvSxLucy1e0rvbHoTITOflIAfA84iCHsHsZjVqrx1iyOMdPtY2sBPmWhtVemDo
WNtc1wfVFB6gzgG1N7msOuFUReOIfyF/ywIDAQAB duwzUpIuaJnWS7JOB4jsYWm672/KfzK7yAivqxD19OwqfZ3nNQ7sEDb3p4udw2Lf
-----END RSA PUBLIC KEY----- 0dqHwZ5Hoj21vs3XiXX/SHcSf5QLzpj1MWBkV3r1D8I8v3P5qUbLunCofp3d9GxE
N0gK06gqbLNonJvC/WD7lxeY32Rh1wYXbzbD/X6aWe/oD8WMIl312hH4cHQHOnVT
t76NISlYTPxwX5mfFsBm8t0GjnnWY2jLwaefk7N/CwoDaKhkhmw1oeAZMuRcDRvE
0ecpO4CZ6CcYERLxoYHgEAj3cMkSrQ8dT6XS4b9EO4hW4zCQ3RK9xDz71+uaihuB
6uuTTsn7s0PYBJDNdccOf1Qt8fqPPgzqUKqeUciHojYDDPTC5KQh5m2PBv4I4iIR
LnKOqNUX7UCqbdaE/tfFRG0CAwEAAQ==
-----END PUBLIC KEY-----
''; '';
}; };
}; };

0
krebs/3modules/external/ssh/Mic92.pub → krebs/3modules/external/ssh/mic92.pub vendored
View File

112
krebs/3modules/gollum.nix Normal file
View File

@ -0,0 +1,112 @@
{ config, lib, pkgs, ... }:
with lib;
let
cfg = config.krebs.gollum;
in
{
options.krebs.gollum = {
enable = mkOption {
type = types.bool;
default = false;
description = "Enable the Gollum service.";
};
address = mkOption {
type = types.str;
default = "0.0.0.0";
description = "IP address on which the web server will listen.";
};
port = mkOption {
type = types.int;
default = 4567;
description = "Port on which the web server will run.";
};
extraConfig = mkOption {
type = types.lines;
default = "";
description = "Content of the configuration file";
};
mathjax = mkOption {
type = types.bool;
default = false;
description = "Enable support for math rendering using MathJax";
};
allowUploads = mkOption {
type = types.nullOr (types.enum [ "dir" "page" ]);
default = null;
description = "Enable uploads of external files";
};
emoji = mkOption {
type = types.bool;
default = false;
description = "Parse and interpret emoji tags";
};
branch = mkOption {
type = types.str;
default = "master";
example = "develop";
description = "Git branch to serve";
};
stateDir = mkOption {
type = types.path;
default = "/var/lib/gollum";
description = "Specifies the path of the repository directory. If it does not exist, Gollum will create it on startup.";
};
};
config = mkIf cfg.enable {
users.users.gollum = {
group = config.users.users.gollum.name;
description = "Gollum user";
home = cfg.stateDir;
createHome = false;
isSystemUser = true;
};
users.groups.gollum = { };
systemd.tmpfiles.rules = [
"d '${cfg.stateDir}' - ${config.users.users.gollum.name} ${config.users.groups.gollum.name} - -"
];
systemd.services.gollum = {
description = "Gollum wiki";
after = [ "network.target" ];
wantedBy = [ "multi-user.target" ];
path = [ pkgs.git ];
preStart = ''
# This is safe to be run on an existing repo
git init ${cfg.stateDir}
'';
serviceConfig = {
User = config.users.users.gollum.name;
Group = config.users.groups.gollum.name;
ExecStart = ''
${pkgs.gollum}/bin/gollum \
--port ${toString cfg.port} \
--host ${cfg.address} \
--config ${pkgs.writeText "gollum-config.rb" cfg.extraConfig} \
--ref ${cfg.branch} \
${optionalString cfg.mathjax "--mathjax"} \
${optionalString cfg.emoji "--emoji"} \
${optionalString (cfg.allowUploads != null) "--allow-uploads ${cfg.allowUploads}"} \
${cfg.stateDir}
'';
};
};
};
}

6
krebs/nixpkgs-unstable.json
View File

@ -1,7 +1,7 @@
{ {
"url": "https://github.com/NixOS/nixpkgs-channels", "url": "https://github.com/NixOS/nixpkgs-channels",
"rev": "8e2b14aceb1d40c7e8b84c03a7c78955359872bb", "rev": "c59ea8b8a0e7f927e7291c14ea6cd1bd3a16ff38",
"date": "2020-08-05T09:17:35+01:00", "date": "2020-08-20T19:08:02+02:00",
"sha256": "0zzjpd9smr7rxzrdf6raw9kbj42fbvafxb5bz36lcxgv290pgsm8", "sha256": "1ak7jqx94fjhc68xh1lh35kh3w3ndbadprrb762qgvcfb8351x8v",
"fetchSubmodules": false "fetchSubmodules": false
} }

6
krebs/nixpkgs.json
View File

@ -1,7 +1,7 @@
{ {
"url": "https://github.com/NixOS/nixpkgs-channels", "url": "https://github.com/NixOS/nixpkgs-channels",
"rev": "e23e05452c67ce406debffa831290fb3abaabf0e", "rev": "42674051d12540d4a996504990c6ea3619505953",
"date": "2020-08-06T15:33:30+02:00", "date": "2020-09-06T21:21:08-04:00",
"sha256": "10wlcm20bvak8cxjhfvmn0vm4n9da3zl19026h66zc1wfmcqgrkp", "sha256": "1hz1n1hghilgzk4zlya498xm5lvhsf0r5b49yii7q86h3616fhwy",
"fetchSubmodules": false "fetchSubmodules": false
} }

8
lass/1systems/blue/config.nix
View File

@ -15,14 +15,6 @@ with import <stockholm/lib>;
krebs.build.host = config.krebs.hosts.blue; krebs.build.host = config.krebs.hosts.blue;
environment.shellAliases = {
deploy = pkgs.writeDash "deploy" ''
set -eu
export SYSTEM="$1"
$(nix-build $HOME/sync/stockholm/lass/krops.nix --no-out-link --argstr name "$SYSTEM" -A deploy)
'';
};
networking.nameservers = [ "1.1.1.1" ]; networking.nameservers = [ "1.1.1.1" ];
services.restic.backups = genAttrs [ services.restic.backups = genAttrs [

8
lass/1systems/prism/config.nix
View File

@ -396,12 +396,12 @@ with import <stockholm/lib>;
]; ];
} }
{ {
nix.trustedUsers = [ "Mic92" ]; nix.trustedUsers = [ "mic92" ];
users.users.Mic92 = { users.users.mic92 = {
uid = genid_uint31 "Mic92"; uid = genid_uint31 "mic92";
isNormalUser = true; isNormalUser = true;
openssh.authorizedKeys.keys = [ openssh.authorizedKeys.keys = [
config.krebs.users.Mic92.pubkey config.krebs.users.mic92.pubkey
]; ];
}; };
} }

1
lass/2configs/default.nix
View File

@ -93,6 +93,7 @@ with import <stockholm/lib>;
environment.systemPackages = with pkgs; [ environment.systemPackages = with pkgs; [
#stockholm #stockholm
deploy
git git
gnumake gnumake
jq jq

6
lass/5pkgs/deploy/default.nix Normal file
View File

@ -0,0 +1,6 @@
{ writers }:
writers.writeDashBin "deploy" ''
set -eu
export SYSTEM="$1"
$(nix-build $HOME/sync/stockholm/lass/krops.nix --no-out-link --argstr name "$SYSTEM" -A deploy)
''

4
makefu/0tests/data/secrets/bureautomation/citadel.nix Normal file
View File

@ -0,0 +1,4 @@
{
MATRIX_TOKEN="a";
MATRIX_ID="b";
}

4
makefu/2configs/bureautomation/camera/comic.nix
View File

@ -3,4 +3,8 @@
platform = "generic"; platform = "generic";
still_image_url = http://127.0.0.1:8123/local/lines.png ; still_image_url = http://127.0.0.1:8123/local/lines.png ;
} }
{ name = "XKCD";
platform = "generic";
still_image_url = http://127.0.0.1:8123/local/xkcd.png ;
}
] ]

12
makefu/2configs/bureautomation/comic-updater.nix
View File

@ -6,21 +6,29 @@ let
in { in {
systemd.services.comic-updater = { systemd.services.comic-updater = {
startAt = "daily"; startAt = "daily";
description = "Send led change to message queue"; description = "update our comics";
after = [ "network-online.target" ] ++ (lib.optional config.services.mosquitto.enable "mosquitto.service"); after = [ "network-online.target" ] ++ (lib.optional config.services.mosquitto.enable "mosquitto.service");
path = with pkgs; [ wget xmlstarlet ]; path = with pkgs; [ wget xmlstarlet ];
wantedBy = [ "multi-user.target" ]; wantedBy = [ "multi-user.target" ];
serviceConfig = { serviceConfig = {
User = "hass"; User = "hass";
WorkingDirectory = config.services.home-assistant.configDir; WorkingDirectory = config.services.home-assistant.configDir;
ExecStart = pkgs.writeDash "update-poorly-drawn-lines" '' ExecStart = pkgs.writeDash "update-comics" ''
set -euf set -euf
mkdir -p www/ mkdir -p www/
cd www/ cd www/
# poorly drawn lines
pic=$(wget -O- http://www.poorlydrawnlines.com/feed/ \ pic=$(wget -O- http://www.poorlydrawnlines.com/feed/ \
| xml sel -t -v '/rss/channel/item/content:encoded' \ | xml sel -t -v '/rss/channel/item/content:encoded' \
| head -n 2 | sed -n 's/.*src="\([^"]\+\)".*/\1/p' ) | head -n 2 | sed -n 's/.*src="\([^"]\+\)".*/\1/p' )
wget "$pic" -nc && cp -v "$(basename "$pic")" lines.png wget "$pic" -nc && cp -v "$(basename "$pic")" lines.png
#pic=$(curl -L xkcd.com 2>/dev/null | grep imgs.xkcd.com | grep title | sed -n 's/.*src="\([^"]\+\)" .*/https:\1/p')
# xkcd
pic=$(wget -O- https://xkcd.com/rss.xml \
| xml sel -t -v '/rss/channel/item/description' \
| head -n 1 | sed -n 's/.*src="\([^"]\+\)".*/\1/p' )
wget "$pic" -nc && cp -v "$(basename "$pic")" xkcd.png
''; '';
PrivateTmp = true; PrivateTmp = true;
}; };

7
makefu/2configs/bureautomation/default.nix
View File

@ -137,9 +137,9 @@ in {
++ frosch.binary_sensor ++ frosch.binary_sensor
++ aramark.binary_sensor; ++ aramark.binary_sensor;
sensor = sensor = []
# [{ platform = "version"; }] ++ # pyhaversion ++ [{ platform = "version"; }] # pyhaversion
(import ./sensor/pollen.nix) ++ (import ./sensor/pollen.nix)
++ (import ./sensor/espeasy.nix) ++ (import ./sensor/espeasy.nix)
++ (import ./sensor/airquality.nix) ++ (import ./sensor/airquality.nix)
++ ((import ./sensor/outside.nix) {inherit lib;}) ++ ((import ./sensor/outside.nix) {inherit lib;})
@ -238,6 +238,7 @@ in {
"camera.Autobahn_Singen" "camera.Autobahn_Singen"
"camera.puppies" "camera.puppies"
"camera.poorly_drawn_lines" "camera.poorly_drawn_lines"
"camera.xkcd"
]; ];
nachtlicht = [ nachtlicht = [
"switch.nachtlicht_a" "switch.nachtlicht_a"

1
makefu/2configs/git/cgit-retiolum.nix
View File

@ -19,6 +19,7 @@ let
cgit.desc = "Yet Another Check-Out System"; cgit.desc = "Yet Another Check-Out System";
}; };
ebk-notify.cgit.desc = "Ebay Kleinanzeigen Notify"; ebk-notify.cgit.desc = "Ebay Kleinanzeigen Notify";
kalauerbot.cgit.desc = "Kalauer König";
}; };
krebs-repos = mapAttrs make-krebs-repo { krebs-repos = mapAttrs make-krebs-repo {

2
makefu/2configs/tools/consoles.nix
View File

@ -5,5 +5,7 @@
hdl-dump hdl-dump
bin2iso bin2iso
cue2pops cue2pops
nx_game_info
hactool
]; ];
} }

1
makefu/2configs/tools/media.nix
View File

@ -7,6 +7,7 @@
vlc vlc
mumble mumble
mplayer mplayer
mpv
# quodlibet # exfalso # quodlibet # exfalso
tinymediamanager tinymediamanager

30
makefu/5pkgs/hactool/default.nix Normal file
View File

@ -0,0 +1,30 @@
{ lib, stdenv, fetchFromGitHub
}:
stdenv.mkDerivation rec {
pname = "hactool";
name = "${pname}-${version}";
version = "1.4.0";
src = fetchFromGitHub {
owner = "SciresM";
repo = "hactool";
rev = version;
sha256 = "0305ngsnwm8npzgyhyifasi4l802xnfz19r0kbzzniirmcn4082d";
};
preBuild = ''
cp config.mk.template config.mk
'';
installPhase = ''
install -D hactool $out/bin/hactool
'';
buildInputs = [ ];
nativeBuildInputs = [ ];
meta = {
description = "tool to view information about, decrypt, and extract common file formats for the Nintendo Switch, especially Nintendo Content Archives";
homepage = https://github.com/SciresM/hactool;
license = stdenv.lib.licenses.isc;
platforms = stdenv.lib.platforms.linux;
maintainers = with stdenv.lib.maintainers; [ makefu ];
};
}

32
makefu/5pkgs/nx_game_info/default.nix Normal file
View File

@ -0,0 +1,32 @@
{ lib, stdenv, fetchurl , mono , unzip
}:
stdenv.mkDerivation rec {
pname = "NX_Game_Info";
name = "${pname}-${version}";
version = "0.7.1";
src = fetchurl {
url = "https://github.com/garoxas/NX_Game_Info/releases/download/v${version}/NX.Game.Info_${version}_cli.zip";
sha256 = "179hkgraydm5hg5fcs1xwh07cx7rbcfwklfak83f0sl1pbya542h";
};
sourceRoot = ".";
buildInputs = [ unzip ];
buildPhase = ":";
installPhase = ''
mkdir -p $out/{bin,lib}
cp * $out/lib/
cat > $out/bin/nxgameinfo_cli <<EOF
${mono}/bin/mono $out/lib/nxgameinfo_cli.exe "\$@"
EOF
chmod +x $out/bin/nxgameinfo_cli
'';
meta = {
description = "Tool to read information from Nintendo Switch game files";
homepage = https://github.com/garoxas/NX_Game_Info;
license = stdenv.lib.licenses.gpl3;
platforms = stdenv.lib.platforms.linux;
maintainers = with stdenv.lib.maintainers; [ makefu ];
};
}