add requireExplicitUpdate option for mobile devices

2024-02-06 17:44:13 +01:00
parent c3a9754e51
commit 5afd5baeb2
4 changed files with 74 additions and 36 deletions
--- a/nixosModules/clanCore/networking.nix
+++ b/nixosModules/clanCore/networking.nix
@@ -1,38 +1,53 @@
 { config, lib, ... }:
 {
-  options.clan.networking = {
-    targetHost = lib.mkOption {
-      description = ''
-        The target SSH node for deployment.
+  options.clan = {
+    networking = {
+      targetHost = lib.mkOption {
+        description = ''
+          The target SSH node for deployment.

-        By default, the node's attribute name will be used.
-        If set to null, only local deployment will be supported.
+          By default, the node's attribute name will be used.
+          If set to null, only local deployment will be supported.

-        format: user@host:port&SSH_OPTION=SSH_VALUE
-        examples:
-          - machine.example.com
-          - user@machine2.example.com
-          - root@example.com:2222&IdentityFile=/path/to/private/key
-      '';
-      default = null;
-      type = lib.types.nullOr lib.types.str;
+          format: user@host:port&SSH_OPTION=SSH_VALUE
+          examples:
+            - machine.example.com
+            - user@machine2.example.com
+            - root@example.com:2222&IdentityFile=/path/to/private/key
+        '';
+        default = null;
+        type = lib.types.nullOr lib.types.str;
+      };
+      buildHost = lib.mkOption {
+        description = ''
+          The build SSH node where nixos-rebuild will be executed.
+
+          If set to null, the targetHost will be used.
+
+          format: user@host:port&SSH_OPTION=SSH_VALUE
+          examples:
+            - machine.example.com
+            - user@machine2.example.com
+            - root@example.com:2222&IdentityFile=/path/to/private/key
+        '';
+        type = lib.types.nullOr lib.types.str;
+        default = null;
+      };
    };
-    buildHost = lib.mkOption {
-      description = ''
-        The build SSH node where nixos-rebuild will be executed.

-        If set to null, the targetHost will be used.
+    deployment = {
+      requireExplicitUpdate = lib.mkOption {
+        description = ''
+          Do not update this machine when running `clan machines update` without any machines specified.

-        format: user@host:port&SSH_OPTION=SSH_VALUE
-        examples:
-          - machine.example.com
-          - user@machine2.example.com
-          - root@example.com:2222&IdentityFile=/path/to/private/key
-      '';
-      type = lib.types.nullOr lib.types.str;
-      default = null;
+          This is useful for machines that are not always online or are not part of the regular update cycle.
+        '';
+        type = lib.types.bool;
+        default = false;
+      };
    };
  };
+
  imports = [
    (lib.mkRenamedOptionModule [ "clan" "networking" "deploymentAddress" ] [ "clan" "networking" "targetHost" ])
  ];
--- a/nixosModules/clanCore/outputs.nix
+++ b/nixosModules/clanCore/outputs.nix
@@ -31,6 +31,13 @@
            the hostname of the target host to be deployed to
          '';
        };
+        deployment.requireExplicitUpdate = lib.mkOption {
+          type = lib.types.bool;
+          description = ''
+            if true, the deployment will not be updated automatically.
+          '';
+          default = false;
+        };
        secretsUploadDirectory = lib.mkOption {
          type = lib.types.path;
          description = ''
@@ -73,6 +80,7 @@
    system.clan.deployment.data = {
      inherit (config.system.clan) secretsModule secretsData;
      inherit (config.clan.networking) targetHost buildHost;
+      inherit (config.clan.deployment) requireExplicitUpdate;
      inherit (config.clanCore) secretsUploadDirectory;
    };
    system.clan.deployment.file = pkgs.writeText "deployment.json" (builtins.toJSON config.system.clan.deployment.data);