import ssh-cursed module

added luj's remote builders
2023-07-01 16:46:53 +02:00 · 2023-07-01 16:44:29 +02:00
2 changed files with 70 additions and 30 deletions
--- a/configurations.nix
+++ b/configurations.nix
@ -34,6 +34,7 @@ let
    ./modules/hosts.nix
    ./modules/network.nix
    ./modules/zsh.nix
+    ./modules/ssh-cursed.nix


    disko.nixosModules.disko
@ -50,38 +51,41 @@ let
     , config
     , lib
     , ...
-     }: let
-       sopsFile = ./. + "/hosts/${config.networking.hostName}.yml";
-    in {
-      nix.nixPath = [
-        "home-manager=${home-manager}"
-        "nixpkgs=${pkgs.path}"
-        "nur=${nur}"
-      ];
-      # TODO: share nixpkgs for each machine to speed up local evaluation.
-      #nixpkgs.pkgs = self.inputs.nixpkgs.legacyPackages.${system};
+     }:
+      let
+        sopsFile = ./. + "/hosts/${config.networking.hostName}.yml";
+      in
+      {
+        nix.nixPath = [
+          "home-manager=${home-manager}"
+          "nixpkgs=${pkgs.path}"
+          "nur=${nur}"
+        ];
+        # TODO: share nixpkgs for each machine to speed up local evaluation.
+        #nixpkgs.pkgs = self.inputs.nixpkgs.legacyPackages.${system};

-      #users.withSops = builtins.pathExists sopsFile;
-      #sops.secrets = lib.mkIf (config.users.withSops) {
-      #  root-password-hash.neededForUsers = true;
-      #};
-      # sops.defaultSopsFile = lib.mkIf (builtins.pathExists sopsFile) sopsFile;
+        #users.withSops = builtins.pathExists sopsFile;
+        #sops.secrets = lib.mkIf (config.users.withSops) {
+        #  root-password-hash.neededForUsers = true;
+        #};
+        # sops.defaultSopsFile = lib.mkIf (builtins.pathExists sopsFile) sopsFile;

-      nix.extraOptions = ''
-        flake-registry = ${flake-registry}/flake-registry.json
-      '';
+        nix.extraOptions = ''
+          flake-registry = ${flake-registry}/flake-registry.json
+          builders-use-substitutes = true
+        '';

-      nix.registry = {
-        home-manager.flake = home-manager;
-        nixpkgs.flake = nixpkgs;
-        nur.flake = nur;
-      };
-      time.timeZone = "UTC";
+        nix.registry = {
+          home-manager.flake = home-manager;
+          nixpkgs.flake = nixpkgs;
+          nur.flake = nur;
+        };
+        time.timeZone = "UTC";

-      environment.systemPackages = [
-        pkgs.kitty.terminfo
-      ];
-    })
+        environment.systemPackages = [
+          pkgs.kitty.terminfo
+        ];
+      })
  ];
 in
 {
@ -94,8 +98,8 @@ in
        ++ [
          ./hosts/epyc.nix
        ];
-      };
    };
+  };

  flake.colmena = {
    meta.nixpkgs = import nixpkgs {
@ -107,6 +111,6 @@ in
        ++ [
          ./hosts/epyc.nix
        ];
-      };
+    };
  };
 }
--- a/modules/ssh-cursed.nix
+++ b/modules/ssh-cursed.nix
@ -0,0 +1,36 @@
+{
+  programs.ssh.extraConfig = ''
+        Host telecom-bastion
+    		HostName ssh.enst.fr
+    		User jmalka
+                IdentityFile /home/luj/.ssh/id_ed25519
+
+        Host lame11
+    		Hostname lame11.enst.fr
+    		User nix-remote-builder
+    		ProxyJump telecom-bastion
+                IdentityFile /home/luj/.ssh/id_ed25519
+        Host lame10
+    		Hostname lame10.enst.fr
+    		User nix-remote-builder
+    		ProxyJump telecom-bastion
+                IdentityFile /home/luj/.ssh/id_ed25519
+        Host lame12
+    		Hostname lame12.enst.fr
+    		User nix-remote-builder
+    		ProxyJump telecom-bastion
+                IdentityFile /home/luj/.ssh/id_ed25519
+        Host lame16
+    		Hostname lame16.enst.fr
+    		User nix-remote-builder
+    		ProxyJump telecom-bastion
+                IdentityFile /home/luj/.ssh/id_ed25519
+        Host lame17
+    		Hostname lame17.enst.fr
+    		User nix-remote-builder
+    		ProxyJump telecom-bastion
+                IdentityFile /home/luj/.ssh/id_ed25519
+
+  '';
+
+}
Author	SHA1	Message	Date
Julien Malka	147ca052d4	import ssh-cursed module	2023-07-01 16:46:53 +02:00
Julien Malka	c898d56781	added luj's remote builders	2023-07-01 16:44:29 +02:00