yadunut/clan-core
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
3,294 Commits 119 Branches 6 Tags
be4628d235cbb3d3ec2cc4d192815cfccee55b9e
Commit Graph

215 Commits

Author SHA1 Message Date
DavHau
a7d1ea455b vars: add generators.<name>.finalScript 2024-07-02 16:37:31 +07:00
DavHau
d3f31acc5c secrets: add settings, generator submodules, improve tests 2024-07-02 15:38:46 +07:00
DavHau
3a0f591c8c vars: simplify eval tests by using submodule directly 2024-07-02 13:55:00 +07:00
clan-bot
0f95bfd279 Merge pull request 'fix secret generation on macos' (#1669) from fix-macos-deploy into main 2024-06-30 06:25:39 +00:00
Jörg Thalheim
2e2358d850 introduce minifakeroot that also works on macos 2024-06-27 18:53:10 +02:00
Jörg Thalheim
bae0a888c9 make bubblewrap in fact generation optional 2024-06-27 18:23:05 +02:00
DavHau
5668bc561d vars: init 
- init eval tests
- init basic interface
 2024-06-27 21:09:55 +07:00
Johannes Kirschbauer
2f8b782a1f Inventory: init module merge & validation logic for inventory 2024-06-25 12:23:29 +00:00
Johannes Kirschbauer
c89080deb4 Extend build-clan interface 2024-06-25 12:23:29 +00:00
Johannes Kirschbauer
e44b07df66 inventory: rename clan.services 2024-06-25 12:23:29 +00:00
Johannes Kirschbauer
afca7ae0cc update inventory implementation 2024-06-25 12:23:29 +00:00
Jörg Thalheim
6086f27263 fix fake-etc build on machines without sandbox 
If we have no sandbox enabled or on macos with sandbox enabled, /etc
contains a lot more files than we actually want.
Instead of copying some random files, we now just create those files
ourself.
 2024-06-21 17:01:40 +02:00
Jörg Thalheim
ef9ed1ebea clan.core.state: wrap all commands in shell scripts 
Otherwise we cannot execute them via ssh and also have nix store
dependencies.
 2024-06-19 17:54:46 +02:00
DavHau
313db5643f refactor: rename clanCore -> clan.core 2024-06-18 18:32:40 +07:00
DavHau
7766829fb1 vm.nix: fix typo in comment 2024-06-11 14:44:08 -07:00
Jörg Thalheim
5c11a30b46 backup: add a way to stop services before restoring a state. 2024-06-06 17:30:35 +02:00
Jörg Thalheim
0dc3b9f056 postgresql: add backup and restore 2024-06-06 14:28:50 +02:00
Jörg Thalheim
6dec2a9222 add postgresql backup hooks 2024-06-06 13:27:30 +02:00
Jörg Thalheim
3c0b5f0867 drop deprecated mdDoc 2024-05-28 13:35:11 +02:00
Qubasa
a48df5b993 Add package function-schema and module-schema. Add check for module jsonschema. 2024-05-01 23:16:17 +02:00
lassulus
c681cc0998 clanCore: remove repl-flake as it is now stable 2024-04-27 16:28:23 +02:00
lassulus
4964415d34 facts password-store: take path from variable 2024-04-21 19:09:46 +02:00
Jörg Thalheim
8658e1694a rework multicast support 2024-04-17 10:57:17 +02:00
Jörg Thalheim
6958da2d57 sops/compat: fix name reference 2024-04-12 13:23:52 +02:00
Jörg Thalheim
58446db110 sops: fix secret path generation 2024-04-12 13:12:31 +02:00
Jörg Thalheim
82aafc287e also enable LLMNR 2024-04-10 15:14:30 +00:00
Jörg Thalheim
0d4e1f870b factstore: secret backends now can return the path to a secret dynamically 
try to move path function out
 2024-04-10 15:14:30 +00:00
Jörg Thalheim
faaf6649c5 fix multicast dns for ethernet 2024-04-10 15:14:30 +00:00
Jörg Thalheim
a8718b92d4 enable multicast fore default dhcp network 2024-04-09 13:35:51 +00:00
Jörg Thalheim
19a62817f2 sops: strip out clanCore.machineName instead of networking.hostName 2024-04-09 15:10:27 +02:00
Jörg Thalheim
e8ebfb2e2a drop custom systemd-networkd unit 
We no longer use multicast dns. This one doesn't
conflict with nixos-generate-config.
 2024-04-09 12:31:57 +02:00
Jörg Thalheim
5b838c0d9c sops: fix decrypte path on machine 2024-04-02 13:50:24 +02:00
DavHau
e0bdf1ce39 docs: render module options docs 
fix errors while rendering some modules
 2024-03-31 00:26:08 +07:00
DavHau
72cc85cd2f secrets: improve description of generator script 2024-03-30 17:16:26 +07:00
Jörg Thalheim
65d116ec28 migrate secrets to new api 2024-03-28 11:02:14 +01:00
lassulus
a8d35d37e7 refactor clanCore.secrets -> clanCore.facts 2024-03-27 16:03:16 +01:00
DavHau
3771be2110 checks: add check for rendering docs 2024-03-27 16:59:42 +07:00
DavHau
4b8b1107ba clanCore/packages.nix: add gitMinimal 
WIthout this, deployment via `clan machines update` will fail on the remote machine if the flake.nix has a git input
 2024-03-25 11:47:32 +07:00
lassulus
f16667e25a refactor secrets & facts -> secret_facts & public_facts 2024-03-23 05:46:54 +01:00
Jörg Thalheim
539df08706 backups: skip preRestore and postRestore if not specified by a service 2024-03-20 09:32:01 +01:00
Jörg Thalheim
92ac151292 rework backup interface to no longer need to list backups to restore them 2024-03-20 09:32:01 +01:00
Jörg Thalheim
e296a3019d re-format with nixfmt 2024-03-17 19:48:49 +01:00
Jörg Thalheim
a6c3e15aca don't use impure builtins.storePath 2024-03-17 18:10:23 +01:00
Jörg Thalheim
377302ff6c change facts path to be reachable as a store path 2024-03-17 18:10:23 +01:00
Jörg Thalheim
a6d52a669d fix openssh secrets 
change facts path to be the full path

sshd: fixup store path
 2024-03-13 14:59:46 +01:00
Jörg Thalheim
c2e43a4e65 allow fact-only secrets 2024-03-13 11:08:36 +01:00
a-kenji
5d5f504013 enable: spice-vdagent if xserver is enable 2024-03-12 16:00:54 +00:00
Jörg Thalheim
0481746198 drop meshnamed from repository 
It's not super useful and we can always add it back later if we need it.
 2024-03-06 10:02:21 +01:00
a-kenji
603893872e secrets: fix typo 2024-03-05 11:59:55 +01:00
lassulus
a1dcddf9b4 clan-cli: add interactive secrets/fact generation 2024-03-03 04:06:18 +01:00