45 lines
1.4 KiB
Nix
45 lines
1.4 KiB
Nix
let
|
|
# This is either a path to a local nix-bitcoin source or an attribute set to
|
|
# be used as the fetchurl argument.
|
|
nix-bitcoin-release = import ./nix-bitcoin-release.nix;
|
|
|
|
nix-bitcoin-path =
|
|
if builtins.isAttrs nix-bitcoin-release then nix-bitcoin-unpacked
|
|
else nix-bitcoin-release;
|
|
|
|
nixpkgs-path = (import "${toString nix-bitcoin-path}/pkgs/nixpkgs-pinned.nix").nixpkgs;
|
|
nixpkgs = import nixpkgs-path {};
|
|
nix-bitcoin = nixpkgs.callPackage nix-bitcoin-path {};
|
|
|
|
nix-bitcoin-unpacked = (import <nixpkgs> {}).runCommand "nix-bitcoin-src" {} ''
|
|
mkdir $out; tar xf ${builtins.fetchurl nix-bitcoin-release} -C $out
|
|
'';
|
|
in
|
|
with nixpkgs;
|
|
|
|
stdenv.mkDerivation rec {
|
|
name = "nix-bitcoin-environment";
|
|
|
|
path = lib.makeBinPath [ nix-bitcoin.extra-container figlet ];
|
|
|
|
shellHook = ''
|
|
export NIX_PATH="nixpkgs=${nixpkgs-path}:nix-bitcoin=${toString nix-bitcoin-path}:."
|
|
export PATH="${path}''${PATH:+:}$PATH"
|
|
|
|
alias fetch-release="${toString nix-bitcoin-path}/helper/fetch-release"
|
|
|
|
krops-deploy() {
|
|
# Ensure strict permissions on secrets/ directory before rsyncing it to
|
|
# the target machine
|
|
chmod 700 ${toString ./secrets}
|
|
$(nix-build --no-out-link ${toString ./krops/deploy.nix})
|
|
}
|
|
|
|
figlet "nix-bitcoin"
|
|
(mkdir -p secrets; cd secrets; env -i ${nix-bitcoin.generate-secrets})
|
|
|
|
# Don't run this hook when another nix-shell is run inside this shell
|
|
unset shellHook
|
|
'';
|
|
}
|