kiara/Fediversity
1
0
Fork 0
forked from fediversity/fediversity
Code Pull requests Activity

Compare commits

base: kiara:7aa3e5f06490dbbc18a063127740714795f63fbc
Branches Tags
kiara:main
kiara:uncall-package
kiara:inline-template
kiara:centralize-tf-providers
kiara:netbox-assign
kiara:unname-config
kiara:unflake-tests
kiara:tf-conversion
kiara:centralize-tf
kiara:test-utils
kiara:octodns
kiara:simplify-eval-opt
kiara:read-only-outputs
kiara:function-test
kiara:checks-rm-effect-pkgs
kiara:with-env
kiara:netbox-unpass-system
kiara:upstream-type-fileset
kiara:rm-checks-nix-path
kiara:netbox
kiara:split-ci-checks
kiara:cancel-old-ci-checks
kiara:nix-gc
kiara:rm-label-boot
kiara:attic
kiara:factor-out-tf-http-backend-settings
kiara:revert-forgejo-queue
kiara:forgejo-queue-channel
kiara:rm-fedi200
kiara:pure
kiara:cd-which
kiara:forgejo-timeout
kiara:rm-updater
kiara:proxmox-overlay
kiara:rm-flake-parts
kiara:factor-out-tf-run
kiara:data-model-tf-proxmox
kiara:minimal-targets
kiara:mv-acme
kiara:spaced-ssh-opts
kiara:unverbose-tf
kiara:rename-caller
kiara:un-options
kiara:rename-pve
kiara:split-data-models
kiara:factor-out-utils
kiara:upstreamed-python-packages
kiara:upstream-nimbolus
kiara:rm-acme
kiara:factor-out-tf-env
kiara:propagate-http-backend-config
kiara:un-intersection
kiara:terraform-backend
kiara:factor-out-tf-setup
kiara:mv-timeout
kiara:bash-proxmox-specify-node
kiara:bash-proxmox-experimental
kiara:reusable-nixos-template
kiara:skip-path-from-root
kiara:tests-thru-flake
kiara:factor-out-nixos-conf
kiara:fix-provision-proxmox
kiara:document-function
kiara:peertube-credentials
kiara:data-model-name
kiara:allow-empty-password
kiara:panel-add-git
kiara:dedupe-tests
kiara:break-down-nix-flake-check
kiara:fix-formatting
kiara:deployment-path
kiara:data-model-tf-test
kiara:data-model-test-deployment-plain
kiara:fix-data-model
kiara:data-model-factor-out-wrapper
kiara:mv-submodule
kiara:data-model-tf-template
kiara:data-model-ssh-template
kiara:proxmox-test
kiara:data-model-add-classes
kiara:data-model-refactor-deployments
kiara:data-model-test-shb
kiara:data-model-check-inputs
kiara:data-model-deployment-types
kiara:data-model-type-nixos-module
kiara:fix-env-apply-call
kiara:woodpecker
kiara:attic-infra
kiara:ci-manual-trigger
kiara:reflexive-function
kiara:data-model-modular-function-application
kiara:data-model-test-tf
kiara:data-model-tf
kiara:attic-woodpecker
kiara:infra-tf
kiara:tofu
kiara:upstream-python-packages
kiara:random-hostname
kiara:repro-data-model-deployment-recursion
kiara:data-model-test-deployment
kiara:unwire-module-functions
kiara:repro-broken-module-function-input-check
kiara:data-model-fix-root-class
kiara:data-model-classes
kiara:fricklerhandwerk-data-model-as-diagram
kiara:repro-username-type-error
kiara:fix-submodule-type
kiara:data-model-deployment-nixos
kiara:data-model-repro-default-issue
kiara:data-model-import-issue-nixops4-nixos
kiara:data-model-mock-nixops4deployment
kiara:data-model-rm-arg
kiara:data-model-as-diagram
kiara:data-model-hack-arg
kiara:data-model-mock-deployment
kiara:npins-verbose
kiara:verbose-updater
kiara:ci-in-nix-docker
kiara:test-pixelfed
kiara:note-scope-secrets
kiara:use-application-model
kiara:icewind
kiara:ci-container
kiara:access-cache-from-runner
kiara:kiara
kiara:attic-extra-dependencies
kiara:icewind-container
kiara:application-config-type-check-attempts
kiara:data-model-revamp
kiara:rm-flake-shell
kiara:use-revamped-data-model
kiara:data-model-runtime-environment
kiara:data-model-deployment-test
kiara:forgejo-ci-vpn
kiara:data-model-migration
kiara:domain-data-model
kiara:data-model-deployment
kiara:data-model-runtime-configuration
kiara:nix-path-for-runner
kiara:destructure-packages
kiara:ignore-tf
kiara:model-application
kiara:rm-sample-secret
kiara:purge-double-hash
kiara:simplify-binpath
kiara:configurable-flake
kiara:check-runner-ip
kiara:check-runner-cpu
kiara:tofu-test
kiara:proxmox
kiara:some-regressions
kiara:de-flake
kiara:kill-disko
kiara:depends_on
kiara:sectarian
kiara:bulma
kiara:tofu-mv-key
kiara:terraform-nixos
kiara:nix-path
kiara:tf
kiara:bash-deploy
kiara:generate-module-options-rebase
kiara:deploy-button-online
kiara:rm-enable-field
kiara:online-manage-py
kiara:stitching
kiara:stitch
kiara:add-missing-migration
kiara:revert-versioned-forms
kiara:form
kiara:form-wip
kiara:auth
fediversity:main
fediversity:ci/pixelfed
fediversity:pixelfed-ci
..
compare: kiara:7bd58ab40b10e54b8ec71c6fbbc4c72de3f7958c
Branches Tags
kiara:uncall-package
kiara:inline-template
kiara:centralize-tf-providers
kiara:netbox-assign
kiara:unname-config
kiara:unflake-tests
kiara:tf-conversion
kiara:centralize-tf
kiara:test-utils
kiara:octodns
kiara:simplify-eval-opt
kiara:read-only-outputs
kiara:function-test
kiara:checks-rm-effect-pkgs
kiara:with-env
kiara:netbox-unpass-system
kiara:upstream-type-fileset
kiara:rm-checks-nix-path
kiara:netbox
kiara:split-ci-checks
kiara:cancel-old-ci-checks
kiara:nix-gc
kiara:rm-label-boot
kiara:attic
kiara:factor-out-tf-http-backend-settings
kiara:revert-forgejo-queue
kiara:forgejo-queue-channel
kiara:rm-fedi200
kiara:pure
kiara:cd-which
kiara:forgejo-timeout
kiara:rm-updater
kiara:proxmox-overlay
kiara:rm-flake-parts
kiara:factor-out-tf-run
kiara:data-model-tf-proxmox
kiara:minimal-targets
kiara:mv-acme
kiara:spaced-ssh-opts
kiara:unverbose-tf
kiara:rename-caller
kiara:un-options
kiara:rename-pve
kiara:split-data-models
kiara:factor-out-utils
kiara:upstreamed-python-packages
kiara:upstream-nimbolus
kiara:rm-acme
kiara:factor-out-tf-env
kiara:propagate-http-backend-config
kiara:un-intersection
kiara:terraform-backend
kiara:factor-out-tf-setup
kiara:mv-timeout
kiara:bash-proxmox-specify-node
kiara:bash-proxmox-experimental
kiara:reusable-nixos-template
kiara:skip-path-from-root
kiara:tests-thru-flake
kiara:factor-out-nixos-conf
kiara:fix-provision-proxmox
kiara:document-function
kiara:peertube-credentials
kiara:data-model-name
kiara:allow-empty-password
kiara:panel-add-git
kiara:dedupe-tests
kiara:break-down-nix-flake-check
kiara:fix-formatting
kiara:deployment-path
kiara:data-model-tf-test
kiara:data-model-test-deployment-plain
kiara:fix-data-model
kiara:data-model-factor-out-wrapper
kiara:mv-submodule
kiara:data-model-tf-template
kiara:data-model-ssh-template
kiara:proxmox-test
kiara:data-model-add-classes
kiara:data-model-refactor-deployments
kiara:data-model-test-shb
kiara:data-model-check-inputs
kiara:data-model-deployment-types
kiara:data-model-type-nixos-module
kiara:fix-env-apply-call
kiara:woodpecker
kiara:attic-infra
kiara:ci-manual-trigger
kiara:reflexive-function
kiara:data-model-modular-function-application
kiara:data-model-test-tf
kiara:data-model-tf
kiara:attic-woodpecker
kiara:infra-tf
kiara:tofu
kiara:upstream-python-packages
kiara:random-hostname
kiara:repro-data-model-deployment-recursion
kiara:data-model-test-deployment
kiara:unwire-module-functions
kiara:repro-broken-module-function-input-check
kiara:data-model-fix-root-class
kiara:data-model-classes
kiara:fricklerhandwerk-data-model-as-diagram
kiara:repro-username-type-error
kiara:fix-submodule-type
kiara:data-model-deployment-nixos
kiara:data-model-repro-default-issue
kiara:data-model-import-issue-nixops4-nixos
kiara:data-model-mock-nixops4deployment
kiara:data-model-rm-arg
kiara:data-model-as-diagram
kiara:data-model-hack-arg
kiara:data-model-mock-deployment
kiara:npins-verbose
kiara:verbose-updater
kiara:ci-in-nix-docker
kiara:main
kiara:test-pixelfed
kiara:note-scope-secrets
kiara:use-application-model
kiara:icewind
kiara:ci-container
kiara:access-cache-from-runner
kiara:kiara
kiara:attic-extra-dependencies
kiara:icewind-container
kiara:application-config-type-check-attempts
kiara:data-model-revamp
kiara:rm-flake-shell
kiara:use-revamped-data-model
kiara:data-model-runtime-environment
kiara:data-model-deployment-test
kiara:forgejo-ci-vpn
kiara:data-model-migration
kiara:domain-data-model
kiara:data-model-deployment
kiara:data-model-runtime-configuration
kiara:nix-path-for-runner
kiara:destructure-packages
kiara:ignore-tf
kiara:model-application
kiara:rm-sample-secret
kiara:purge-double-hash
kiara:simplify-binpath
kiara:configurable-flake
kiara:check-runner-ip
kiara:check-runner-cpu
kiara:tofu-test
kiara:proxmox
kiara:some-regressions
kiara:de-flake
kiara:kill-disko
kiara:depends_on
kiara:sectarian
kiara:bulma
kiara:tofu-mv-key
kiara:terraform-nixos
kiara:nix-path
kiara:tf
kiara:bash-deploy
kiara:generate-module-options-rebase
kiara:deploy-button-online
kiara:rm-enable-field
kiara:online-manage-py
kiara:stitching
kiara:stitch
kiara:add-missing-migration
kiara:revert-versioned-forms
kiara:form
kiara:form-wip
kiara:auth
fediversity:main
fediversity:ci/pixelfed
fediversity:pixelfed-ci

20 commits
7aa3e5f064 ... 7bd58ab40b

Author SHA1 Message Date
Kiara Grouwstra
7bd58ab40b
change ssh user to root 2025-04-01 11:56:54 +02:00
Kiara Grouwstra
4f4bea2a01
use a mutable HOME in TF for nixos-anywhere to make a .ssh dir in - will this not backfire? 2025-03-30 13:12:32 +02:00
Kiara Grouwstra
b26fbec7f8
for now gitignore .auto.tfvars.json used to track TF module of nixos-anywhere 
in case we want that file for something else, we can move this (and its
ignore) to something separate.
 2025-03-30 12:48:53 +02:00
Kiara Grouwstra
8e83f5b00c
untrack TF generated provider/module stuff - local dev now requires following launch/README.md 2025-03-30 12:45:24 +02:00
Kiara Grouwstra
46469c033f
rm comment 2025-03-30 10:42:35 +02:00
Kiara Grouwstra
be9cbfb8c5
update nixos-anywhere to fix error 'installable ... does not correspond to a Nix language value' 2025-03-30 10:41:16 +02:00
Kiara Grouwstra
e329a721d4
rm launch flake, as i seem to have reached similar progress without it 2025-03-28 21:22:42 +01:00
Kiara Grouwstra
caa497c4a2
get TF in prod to the same 'installable ... does not correspond to a Nix language value' for non-flakes 
seemingly gets further when a similar command is tried from terminal.
as per https://github.com/NixOS/nix/issues/8752#issuecomment-1694714693,
this may have to do with aligning the current working directory.
 2025-03-28 21:14:16 +01:00
Kiara Grouwstra
659a3593b5
document updating TF module 2025-03-28 21:14:16 +01:00
Kiara Grouwstra
7e24b9e478
update 2025-03-28 21:14:16 +01:00
Kiara Grouwstra
7048058d6b
specify XDG_CACHE_HOME, workaround to error writing to /var/empty/.cache 2025-03-28 21:14:16 +01:00
Kiara Grouwstra
ed63b582ed
skip tf lock in views.py over read-only nix env 2025-03-28 21:14:16 +01:00
Kiara Grouwstra
f04e1d0f40
move tf init out of python over read-only nix env 2025-03-28 21:14:16 +01:00
Kiara Grouwstra
2365d9a044
properly pass repo dir for prod, be it with hard-coded TF init 2025-03-28 21:14:16 +01:00
Kiara Grouwstra
ecc41a7dfd
use flake-sourced nixos-anywhere in tf, to reproduce modules for nix 2025-03-28 21:14:16 +01:00
Kiara Grouwstra
0419ec38f5
switch launch shell to root flake's nixpkgs, see #279 2025-03-28 21:14:16 +01:00
Kiara Grouwstra
65bba16d83
Revert "deduplicate flake inputs" 
This reverts commit 95769084ce.
 2025-03-28 21:14:16 +01:00
Kiara Grouwstra
264fbf8729
make re-exports explicit again 2025-03-28 21:14:16 +01:00
Kiara Grouwstra
65159cdc18
deduplicate flake inputs 2025-03-28 21:14:16 +01:00
Kiara Grouwstra
6bb5768ddc
tf 2025-03-28 21:14:16 +01:00
17 changed files with 97 additions and 220 deletions
Show stats Expand all files Collapse all files

145
deployment/default.nix
View file

@ -36,7 +36,7 @@
panelConfig: panelConfig:
let let
inherit (lib) mkIf; inherit (lib) mkMerge mkIf;
in in
@ -101,81 +101,90 @@ in
in in
{ mkMerge [
garage-configuration = makeConfigurationResource garageConfigurationResource (
{ pkgs, ... }:
mkIf (panelConfig.mastodon.enable || panelConfig.peertube.enable || panelConfig.pixelfed.enable) {
fediversity = {
inherit (panelConfig) domain;
garage.enable = true;
pixelfed = pixelfedS3KeyConfig { inherit pkgs; };
mastodon = mastodonS3KeyConfig { inherit pkgs; };
peertube = peertubeS3KeyConfig { inherit pkgs; };
};
}
);
mastodon-configuration = makeConfigurationResource mastodonConfigurationResource ( (mkIf (panelConfig.mastodon.enable || panelConfig.peertube.enable || panelConfig.pixelfed.enable) {
{ pkgs, ... }: garage-configuration = makeConfigurationResource garageConfigurationResource (
mkIf panelConfig.mastodon.enable { { pkgs, ... }:
fediversity = { {
inherit (panelConfig) domain; fediversity = {
temp.initialUser = { inherit (panelConfig) domain;
inherit (panelConfig.initialUser) username email displayName; garage.enable = true;
# FIXME: disgusting, but nvm, this is going to be replaced by pixelfed = pixelfedS3KeyConfig { inherit pkgs; };
# proper central authentication at some point mastodon = mastodonS3KeyConfig { inherit pkgs; };
passwordFile = pkgs.writeText "password" panelConfig.initialUser.password; peertube = peertubeS3KeyConfig { inherit pkgs; };
}; };
}
);
})
mastodon = mastodonS3KeyConfig { inherit pkgs; } // { (mkIf panelConfig.mastodon.enable {
enable = true; mastodon-configuration = makeConfigurationResource mastodonConfigurationResource (
{ pkgs, ... }:
{
fediversity = {
inherit (panelConfig) domain;
temp.initialUser = {
inherit (panelConfig.initialUser) username email displayName;
# FIXME: disgusting, but nvm, this is going to be replaced by
# proper central authentication at some point
passwordFile = pkgs.writeText "password" panelConfig.initialUser.password;
};
mastodon = mastodonS3KeyConfig { inherit pkgs; } // {
enable = true;
};
temp.cores = 1; # FIXME: should come from NixOps4 eventually
}; };
}
);
})
temp.cores = 1; # FIXME: should come from NixOps4 eventually (mkIf panelConfig.peertube.enable {
}; peertube-configuration = makeConfigurationResource peertubeConfigurationResource (
} { pkgs, ... }:
); {
fediversity = {
inherit (panelConfig) domain;
temp.initialUser = {
inherit (panelConfig.initialUser) username email displayName;
# FIXME: disgusting, but nvm, this is going to be replaced by
# proper central authentication at some point
passwordFile = pkgs.writeText "password" panelConfig.initialUser.password;
};
peertube-configuration = makeConfigurationResource peertubeConfigurationResource ( peertube = peertubeS3KeyConfig { inherit pkgs; } // {
{ pkgs, ... }: enable = true;
mkIf panelConfig.peertube.enable { ## NOTE: Only ever used for testing anyway.
fediversity = { ##
inherit (panelConfig) domain; ## FIXME: Generate and store in NixOps4's state.
temp.initialUser = { secretsFile = pkgs.writeText "secret" "574e093907d1157ac0f8e760a6deb1035402003af5763135bae9cbd6abe32b24";
inherit (panelConfig.initialUser) username email displayName; };
# FIXME: disgusting, but nvm, this is going to be replaced by
# proper central authentication at some point
passwordFile = pkgs.writeText "password" panelConfig.initialUser.password;
}; };
}
);
})
peertube = peertubeS3KeyConfig { inherit pkgs; } // { (mkIf panelConfig.pixelfed.enable {
enable = true; pixelfed-configuration = makeConfigurationResource pixelfedConfigurationResource (
## NOTE: Only ever used for testing anyway. { pkgs, ... }:
## {
## FIXME: Generate and store in NixOps4's state. fediversity = {
secretsFile = pkgs.writeText "secret" "574e093907d1157ac0f8e760a6deb1035402003af5763135bae9cbd6abe32b24"; inherit (panelConfig) domain;
}; temp.initialUser = {
}; inherit (panelConfig.initialUser) username email displayName;
} # FIXME: disgusting, but nvm, this is going to be replaced by
); # proper central authentication at some point
passwordFile = pkgs.writeText "password" panelConfig.initialUser.password;
};
pixelfed-configuration = makeConfigurationResource pixelfedConfigurationResource ( pixelfed = pixelfedS3KeyConfig { inherit pkgs; } // {
{ pkgs, ... }: enable = true;
mkIf panelConfig.pixelfed.enable { };
fediversity = {
inherit (panelConfig) domain;
temp.initialUser = {
inherit (panelConfig.initialUser) username email displayName;
# FIXME: disgusting, but nvm, this is going to be replaced by
# proper central authentication at some point
passwordFile = pkgs.writeText "password" panelConfig.initialUser.password;
}; };
}
pixelfed = pixelfedS3KeyConfig { inherit pkgs; } // { );
enable = true; })
}; ];
};
}
);
};
} }

24
infra/flake-part.nix
View file

@ -22,26 +22,10 @@ let
{ vmName, isTestVm }: { vmName, isTestVm }:
{ {
_module.args = { inherit inputs; }; _module.args = { inherit inputs; };
imports = imports = [
[ ./common/resource.nix
./common/resource.nix (if isTestVm then ./test-machines + "/${vmName}" else ./machines + "/${vmName}")
] ];
++ (
if isTestVm then
[
./test-machines/${vmName}
{
nixos.module.users.users.root.openssh.authorizedKeys.keys = [
# allow our panel vm access to the test machines
(import ../keys).systems.fedi201
];
}
]
else
[
./machines/${vmName}
]
);
fediversityVm.name = vmName; fediversityVm.name = vmName;
}; };

19
infra/test-machines/test11/default.nix
View file

@ -1,19 +0,0 @@
{
fediversityVm = {
vmId = 7011;
proxmox = "fediversity";
hostPublicKey = builtins.readFile ./ssh_host_ed25519_key.pub;
unsafeHostPrivateKey = builtins.readFile ./ssh_host_ed25519_key;
domain = "abundos.eu";
ipv4 = {
address = "95.215.187.61";
gateway = "95.215.187.1";
};
ipv6 = {
address = "2a00:51c0:13:1305::61";
gateway = "2a00:51c0:13:1305::1";
};
};
}

7
infra/test-machines/test11/ssh_host_ed25519_key
View file

@ -1,7 +0,0 @@
-----BEGIN OPENSSH PRIVATE KEY-----
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
QyNTUxOQAAACCWc7GuMI3Gzkj+mSep6MVbKDccS52jVw+nBs27yFCGVgAAAIhCymnvQspp
7wAAAAtzc2gtZWQyNTUxOQAAACCWc7GuMI3Gzkj+mSep6MVbKDccS52jVw+nBs27yFCGVg
AAAEAvr1aiy0DIjgdLH9bBq9uD4pf8Wakgqr34oWDPB2/E75Zzsa4wjcbOSP6ZJ6noxVso
NxxLnaNXD6cGzbvIUIZWAAAAAAECAwQF
-----END OPENSSH PRIVATE KEY-----

1
infra/test-machines/test11/ssh_host_ed25519_key.pub
View file

@ -1 +0,0 @@
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJZzsa4wjcbOSP6ZJ6noxVsoNxxLnaNXD6cGzbvIUIZW

19
infra/test-machines/test12/default.nix
View file

@ -1,19 +0,0 @@
{
fediversityVm = {
vmId = 7012;
proxmox = "fediversity";
hostPublicKey = builtins.readFile ./ssh_host_ed25519_key.pub;
unsafeHostPrivateKey = builtins.readFile ./ssh_host_ed25519_key;
domain = "abundos.eu";
ipv4 = {
address = "95.215.187.62";
gateway = "95.215.187.1";
};
ipv6 = {
address = "2a00:51c0:13:1305::62";
gateway = "2a00:51c0:13:1305::1";
};
};
}

7
infra/test-machines/test12/ssh_host_ed25519_key
View file

@ -1,7 +0,0 @@
-----BEGIN OPENSSH PRIVATE KEY-----
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
QyNTUxOQAAACBuvrzv3i07NFxONsNP7uJmefebrBhfo0pwzmC3NCAOZwAAAIiA+nIugPpy
LgAAAAtzc2gtZWQyNTUxOQAAACBuvrzv3i07NFxONsNP7uJmefebrBhfo0pwzmC3NCAOZw
AAAEDkpXNePQeHnf4vkDkhZI/ab9Ds2igfY0a5U1p4PrEmvm6+vO/eLTs0XE42w0/u4mZ5
95usGF+jSnDOYLc0IA5nAAAAAAECAwQF
-----END OPENSSH PRIVATE KEY-----

1
infra/test-machines/test12/ssh_host_ed25519_key.pub
View file

@ -1 +0,0 @@
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIG6+vO/eLTs0XE42w0/u4mZ595usGF+jSnDOYLc0IA5n

19
infra/test-machines/test13/default.nix
View file

@ -1,19 +0,0 @@
{
fediversityVm = {
vmId = 7013;
proxmox = "fediversity";
hostPublicKey = builtins.readFile ./ssh_host_ed25519_key.pub;
unsafeHostPrivateKey = builtins.readFile ./ssh_host_ed25519_key;
domain = "abundos.eu";
ipv4 = {
address = "95.215.187.63";
gateway = "95.215.187.1";
};
ipv6 = {
address = "2a00:51c0:13:1305::63";
gateway = "2a00:51c0:13:1305::1";
};
};
}

7
infra/test-machines/test13/ssh_host_ed25519_key
View file

@ -1,7 +0,0 @@
-----BEGIN OPENSSH PRIVATE KEY-----
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
QyNTUxOQAAACATzdyp4E+PX6lDfw2CmezguYn/lPgbpI+NUbmseEwAgwAAAIi2z3O2ts9z
tgAAAAtzc2gtZWQyNTUxOQAAACATzdyp4E+PX6lDfw2CmezguYn/lPgbpI+NUbmseEwAgw
AAAEDj2sn4VJhBL2a7j41mjdMWIdJ/u1betSxZ393lNd3+pBPN3KngT49fqUN/DYKZ7OC5
if+U+Bukj41Ruax4TACDAAAAAAECAwQF
-----END OPENSSH PRIVATE KEY-----

1
infra/test-machines/test13/ssh_host_ed25519_key.pub
View file

@ -1 +0,0 @@
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBPN3KngT49fqUN/DYKZ7OC5if+U+Bukj41Ruax4TACD

19
infra/test-machines/test14/default.nix
View file

@ -1,19 +0,0 @@
{
fediversityVm = {
vmId = 7014;
proxmox = "fediversity";
hostPublicKey = builtins.readFile ./ssh_host_ed25519_key.pub;
unsafeHostPrivateKey = builtins.readFile ./ssh_host_ed25519_key;
domain = "abundos.eu";
ipv4 = {
address = "95.215.187.64";
gateway = "95.215.187.1";
};
ipv6 = {
address = "2a00:51c0:13:1305::64";
gateway = "2a00:51c0:13:1305::1";
};
};
}

7
infra/test-machines/test14/ssh_host_ed25519_key
View file

@ -1,7 +0,0 @@
-----BEGIN OPENSSH PRIVATE KEY-----
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
QyNTUxOQAAACB028Q86t8RXi7617OrckxNPKNwnpGGZqhXhppHB5n9tQAAAIhfhYlCX4WJ
QgAAAAtzc2gtZWQyNTUxOQAAACB028Q86t8RXi7617OrckxNPKNwnpGGZqhXhppHB5n9tQ
AAAEAualLRodpovSzGAhza2OVvg5Yp8xv3A7xUNNbKsMTKSHTbxDzq3xFeLvrXs6tyTE08
o3CekYZmqFeGmkcHmf21AAAAAAECAwQF
-----END OPENSSH PRIVATE KEY-----

1
infra/test-machines/test14/ssh_host_ed25519_key.pub
View file

@ -1 +0,0 @@
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHTbxDzq3xFeLvrXs6tyTE08o3CekYZmqFeGmkcHmf21

4
npins/sources.json
View file

@ -81,8 +81,8 @@
"nixpkgs": { "nixpkgs": {
"type": "Channel", "type": "Channel",
"name": "nixpkgs-unstable", "name": "nixpkgs-unstable",
"url": "https://releases.nixos.org/nixpkgs/nixpkgs-25.05pre777917.b7ba7f9f45c5/nixexprs.tar.xz", "url": "https://releases.nixos.org/nixpkgs/nixpkgs-25.05pre711046.8edf06bea5bc/nixexprs.tar.xz",
"hash": "0jb6b7sv66bn06pchj2l88z0i5dlz0c2vb3z6pjjlq2p8q11zigg" "hash": "1mwsn0rvfm603svrq3pca4c51zlix5gkyr4gl6pxhhq3q6xs5s8y"
} }
}, },
"version": 3 "version": 3

12
panel/src/panel/templates/partials/deployment_result.html
View file

@ -1,15 +1,13 @@
{% if deployment_succeeded %} {% if deployment_status %}
<p>Deployment Succeeded</p> <p>{{ deployment_status }}</p>
<ul> <ul>
{% for service_name, service_meta in services.items %} {% for service, state in services.items %}
{% if service_meta.enable %} {% if state %}
<li> <li>
<a target="_blank" href={{ service_meta.url }}>{{ service_name }}</a> {{ service }}
</li> </li>
{% endif %} {% endif %}
{% endfor %} {% endfor %}
</ul> </ul>
{% else %}
<p>Deployment Failed</p>
{% endif %} {% endif %}

24
panel/src/panel/views.py
View file

@ -103,24 +103,18 @@ class DeploymentStatus(ConfigurationForm):
# Check for deploy button # Check for deploy button
if "deploy" in self.request.POST.keys(): if "deploy" in self.request.POST.keys():
deployment_result, deployment_params = self.deployment(obj) deployment_result, deployment_params = self.deployment(obj)
deployment_succeeded = deployment_result.returncode == 0 if deployment_result.returncode == 0:
deployment_status = "Deployment Succeeded"
else:
deployment_status = "Deployment Failed"
return render(self.request, "partials/deployment_result.html", { return render(self.request, "partials/deployment_result.html", {
"deployment_succeeded": deployment_succeeded, "deployment_status": deployment_status,
"services": { "services": {
"peertube": { "peertube": deployment_params['peertube']['enable'],
"enable": deployment_params['peertube']['enable'], "pixelfed": deployment_params['pixelfed']['enable'],
"url": f"https://peertube.{deployment_params['domain']}", "mastodon": deployment_params['mastodon']['enable']
}, }
"pixelfed":{
"enable": deployment_params['pixelfed']['enable'],
"url": f"https://pixelfed.{deployment_params['domain']}",
},
"mastodon": {
"enable": deployment_params['mastodon']['enable'],
"url": f"https://mastodon.{deployment_params['domain']}",
},
},
}) })
def deployment(self, obj): def deployment(self, obj):