[perso/Immae/Config/Nix.git] / nixops / Makefile

export
ifndef NIXOPS_CONFIG_PASS_SUBTREE_PATH
  $(error Please set NIXOPS_CONFIG_PASS_SUBTREE_PATH to the password-store subtree path)
endif

NIXOPS_STATE ?= ./state/eldiron.nixops
NIXOPS_DEPLOYMENT = cef694f3-081d-11e9-b31f-0242ec186adf
nixpkgs ?= $(shell cat ../nix/sources.json | jq -r '."nixpkgs-nixops".url')
nixpkgsNext ?= $(shell cat ../nix/sources.json | jq -r '."nixpkgs-nixops-next".url')
nixpkgsPrevious ?= $(shell cat ../nix/sources.json | jq -r '."nixpkgs-nixops-previous".url')
NIX_PATH = nixpkgs=${nixpkgs}:nixpkgsNext=${nixpkgsNext}:nixpkgsPrevious=${nixpkgsPrevious}

NIXOPS := $(shell NIX_PATH=$(NIX_PATH) nix-build --no-out-link -E "with import <nixpkgs> { overlays = builtins.attrValues (import ../overlays); }; nixops")/bin/nixops
NIXOPS_PRIV = ./scripts/with_env $(NIXOPS)

###### Current channel information
nix-info:
	@version=$$(nix eval --raw nixpkgs.lib.version) && \
	  mainversion=$$(echo $$version | cut -d"." -f -2) && \
	  echo "https://releases.nixos.org/nixos/$$mainversion/nixos-$$version/nixexprs.tar.xz" && \
	  nix-instantiate --find-file nixpkgs
.PHONY: nix-info

###### Initial setup
setup:
	./scripts/setup
.PHONY: setup

###### Nixops regular tasks
NIXOPS_ARGS ?=
nixops:
	$(NIXOPS_PRIV) $(NIXOPS_ARGS)

SSH_ARGS ?=
ssh-eldiron:
	$(NIXOPS_PRIV) ssh eldiron -- $(SSH_ARGS)

ssh-dilion:
	$(NIXOPS_PRIV) ssh dilion -- $(SSH_ARGS)

ssh-backup-2:
	$(NIXOPS_PRIV) ssh backup-2 -- $(SSH_ARGS)

ssh-monitoring-1:
	$(NIXOPS_PRIV) ssh monitoring-1 -- $(SSH_ARGS)

info:
	$(NIXOPS_PRIV) list
	$(NIXOPS_PRIV) info

debug:
	$(NIXOPS_PRIV) deploy --build-only --show-trace

dry-run:
	$(NIXOPS_PRIV) deploy --dry-run

build:
	$(NIXOPS_PRIV) deploy --build-only --keep-going

upload:
	$(NIXOPS_PRIV) deploy --copy-only

deploy:
	$(NIXOPS_PRIV) deploy

deploy-reboot:
	$(NIXOPS_PRIV) deploy --force-reboot

reboot:
	$(NIXOPS_PRIV) reboot --include=eldiron
.PHONY: nixops ssh-eldiron info debug dry-run build upload deploy deploy-reboot reboot

###### Cleanup generations and garbage collection
profile := $$($(NIXOPS_PRIV) info | grep "^Nix profile: " | sed -e "s/^Nix profile: //")
GEN ?= "+3"

list-generations:
	nix-env -p $(profile) --list-generations
	$(NIXOPS_PRIV) ssh eldiron -- nix-env -p /nix/var/nix/profiles/system --list-generations
.PHONY: list-generations

delete-generations:
	nix-env -p $(profile) --delete-generations $(GEN)
	$(NIXOPS_PRIV) ssh eldiron -- nix-env -p /nix/var/nix/profiles/system --delete-generations $(GEN)
	$(NIXOPS_PRIV) ssh dilion -- nix-env -p /nix/var/nix/profiles/system --delete-generations $(GEN)
	$(NIXOPS_PRIV) ssh backup-2 -- nix-env -p /nix/var/nix/profiles/system --delete-generations $(GEN)
	$(NIXOPS_PRIV) ssh monitoring-1 -- nix-env -p /nix/var/nix/profiles/system --delete-generations $(GEN)
.PHONY: delete-generations

cleanup: delete-generations
	nix-store --gc
	$(NIXOPS_PRIV) ssh eldiron -- nix-store --gc
	$(NIXOPS_PRIV) ssh dilion -- nix-store --gc
	$(NIXOPS_PRIV) ssh backup-2 -- nix-store --gc
	$(NIXOPS_PRIV) ssh monitoring-1 -- nix-store --gc
.PHONY: cleanup

###### Pull environment and deployment from remote
# Don't include pull_deployment by default as this should happen only rarely
pull: pull_environment;
.PHONY: pull

pull_environment:
ifndef NIXOPS_CONFIG_PASS_SUBTREE_REMOTE
	$(error "Please set NIXOPS_CONFIG_PASS_SUBTREE_REMOTE to the password-store subtree remote name")
endif
	pass git subtree pull --prefix=$(NIXOPS_CONFIG_PASS_SUBTREE_PATH) $(NIXOPS_CONFIG_PASS_SUBTREE_REMOTE) master
.PHONY: pull_environment

pull_deployment:
	@if $(NIXOPS) info -d $(NIXOPS_DEPLOYMENT) 2>/dev/null >/dev/null ; then \
	  echo "This will remove your current deployment file and recreate it!. Continue? [y/N]" && \
	  read y && \
	  [ "$$y" = "y" -o "$$y" = "Y" ] && \
	  $(NIXOPS) delete --force -d $(NIXOPS_DEPLOYMENT); \
	fi
	pass show $(NIXOPS_CONFIG_PASS_SUBTREE_PATH)/Nixops/Deployment | $(NIXOPS) import
	$(NIXOPS) modify -d $(NIXOPS_DEPLOYMENT) "$$(pwd)/default.nix"
.PHONY: pull_deployment

deployment_is_set:
	$(NIXOPS) info -d $(NIXOPS_DEPLOYMENT) 2>/dev/null >/dev/null
.PHONY: deployment_is_set

###### Push environment and deployment information to password store
push: push_deployment push_environment;
.PHONY: push

push_deployment:
	$(NIXOPS) export | pass insert -m $(NIXOPS_CONFIG_PASS_SUBTREE_PATH)/Nixops/Deployment
.PHONY: push_deployment

push_environment:
ifndef NIXOPS_CONFIG_PASS_SUBTREE_REMOTE
	$(error "Please set NIXOPS_CONFIG_PASS_SUBTREE_REMOTE to the password-store subtree remote name")
endif
	pass git subtree push --prefix=$(NIXOPS_CONFIG_PASS_SUBTREE_PATH) $(NIXOPS_CONFIG_PASS_SUBTREE_REMOTE) master
.PHONY: push_environment
Commit	Line	Data
4506dbe5 IB	1	export
	2	ifndef NIXOPS_CONFIG_PASS_SUBTREE_PATH
	3	$(error Please set NIXOPS_CONFIG_PASS_SUBTREE_PATH to the password-store subtree path)
	4	endif
	5
	6	NIXOPS_STATE ?= ./state/eldiron.nixops
	7	NIXOPS_DEPLOYMENT = cef694f3-081d-11e9-b31f-0242ec186adf
ccda44f3 IB	8	nixpkgs ?= $(shell cat ../nix/sources.json \| jq -r '."nixpkgs-nixops".url')
	9	nixpkgsNext ?= $(shell cat ../nix/sources.json \| jq -r '."nixpkgs-nixops-next".url')
	10	nixpkgsPrevious ?= $(shell cat ../nix/sources.json \| jq -r '."nixpkgs-nixops-previous".url')
	11	NIX_PATH = nixpkgs=${nixpkgs}:nixpkgsNext=${nixpkgsNext}:nixpkgsPrevious=${nixpkgsPrevious}
4506dbe5 IB	12
	13	NIXOPS := $(shell NIX_PATH=$(NIX_PATH) nix-build --no-out-link -E "with import <nixpkgs> { overlays = builtins.attrValues (import ../overlays); }; nixops")/bin/nixops
	14	NIXOPS_PRIV = ./scripts/with_env $(NIXOPS)
	15
	16	###### Current channel information
	17	nix-info:
	18	@version=$$(nix eval --raw nixpkgs.lib.version) && \
	19	mainversion=$$(echo $$version \| cut -d"." -f -2) && \
	20	echo "https://releases.nixos.org/nixos/$$mainversion/nixos-$$version/nixexprs.tar.xz" && \
af3aeef2	21	nix-instantiate --find-file nixpkgs
4506dbe5 IB	22	.PHONY: nix-info
	23
	24	###### Initial setup
c79bb682 IB	25	setup:
c79bb682 IB	26	./scripts/setup
4506dbe5	27	.PHONY: setup
c79bb682	28
4506dbe5 IB	29	###### Nixops regular tasks
	30	NIXOPS_ARGS ?=
	31	nixops:
	32	$(NIXOPS_PRIV) $(NIXOPS_ARGS)
	33
	34	SSH_ARGS ?=
c79bb682	35	ssh-eldiron:
4506dbe5	36	$(NIXOPS_PRIV) ssh eldiron -- $(SSH_ARGS)
c79bb682	37
8a304ef4 IB	38	ssh-dilion:
	39	$(NIXOPS_PRIV) ssh dilion -- $(SSH_ARGS)
	40
ddaa9caf IB	41	ssh-backup-2:
	42	$(NIXOPS_PRIV) ssh backup-2 -- $(SSH_ARGS)
	43
e820134d IB	44	ssh-monitoring-1:
	45	$(NIXOPS_PRIV) ssh monitoring-1 -- $(SSH_ARGS)
	46
c79bb682	47	info:
4506dbe5 IB	48	$(NIXOPS_PRIV) list
4506dbe5 IB	49	$(NIXOPS_PRIV) info
c79bb682 IB	50
c79bb682 IB	51	debug:
4506dbe5	52	$(NIXOPS_PRIV) deploy --build-only --show-trace
c79bb682 IB	53
c79bb682 IB	54	dry-run:
4506dbe5	55	$(NIXOPS_PRIV) deploy --dry-run
c79bb682 IB	56
c79bb682 IB	57	build:
258dd18b	58	$(NIXOPS_PRIV) deploy --build-only --keep-going
c79bb682 IB	59
c79bb682 IB	60	upload:
258dd18b	61	$(NIXOPS_PRIV) deploy --copy-only
c79bb682 IB	62
c79bb682 IB	63	deploy:
4506dbe5	64	$(NIXOPS_PRIV) deploy
1618010c	65
4506dbe5 IB	66	deploy-reboot:
4506dbe5 IB	67	$(NIXOPS_PRIV) deploy --force-reboot
c79bb682	68
4506dbe5 IB	69	reboot:
	70	$(NIXOPS_PRIV) reboot --include=eldiron
	71	.PHONY: nixops ssh-eldiron info debug dry-run build upload deploy deploy-reboot reboot
c79bb682	72
4506dbe5 IB	73	###### Cleanup generations and garbage collection
4506dbe5 IB	74	profile := $$($(NIXOPS_PRIV) info \| grep "^Nix profile: " \| sed -e "s/^Nix profile: //")
c79bb682 IB	75	GEN ?= "+3"
	76
	77	list-generations:
	78	nix-env -p $(profile) --list-generations
4506dbe5 IB	79	$(NIXOPS_PRIV) ssh eldiron -- nix-env -p /nix/var/nix/profiles/system --list-generations
4506dbe5 IB	80	.PHONY: list-generations
c79bb682 IB	81
	82	delete-generations:
	83	nix-env -p $(profile) --delete-generations $(GEN)
4506dbe5	84	$(NIXOPS_PRIV) ssh eldiron -- nix-env -p /nix/var/nix/profiles/system --delete-generations $(GEN)
8a304ef4	85	$(NIXOPS_PRIV) ssh dilion -- nix-env -p /nix/var/nix/profiles/system --delete-generations $(GEN)
e820134d IB	86	$(NIXOPS_PRIV) ssh backup-2 -- nix-env -p /nix/var/nix/profiles/system --delete-generations $(GEN)
e820134d IB	87	$(NIXOPS_PRIV) ssh monitoring-1 -- nix-env -p /nix/var/nix/profiles/system --delete-generations $(GEN)
4506dbe5	88	.PHONY: delete-generations
c79bb682 IB	89
	90	cleanup: delete-generations
	91	nix-store --gc
4506dbe5	92	$(NIXOPS_PRIV) ssh eldiron -- nix-store --gc
8a304ef4	93	$(NIXOPS_PRIV) ssh dilion -- nix-store --gc
e820134d IB	94	$(NIXOPS_PRIV) ssh backup-2 -- nix-store --gc
e820134d IB	95	$(NIXOPS_PRIV) ssh monitoring-1 -- nix-store --gc
4506dbe5 IB	96	.PHONY: cleanup
	97
	98	###### Pull environment and deployment from remote
	99	# Don't include pull_deployment by default as this should happen only rarely
	100	pull: pull_environment;
	101	.PHONY: pull
	102
	103	pull_environment:
	104	ifndef NIXOPS_CONFIG_PASS_SUBTREE_REMOTE
	105	$(error "Please set NIXOPS_CONFIG_PASS_SUBTREE_REMOTE to the password-store subtree remote name")
	106	endif
	107	pass git subtree pull --prefix=$(NIXOPS_CONFIG_PASS_SUBTREE_PATH) $(NIXOPS_CONFIG_PASS_SUBTREE_REMOTE) master
	108	.PHONY: pull_environment
	109
	110	pull_deployment:
	111	@if $(NIXOPS) info -d $(NIXOPS_DEPLOYMENT) 2>/dev/null >/dev/null ; then \
	112	echo "This will remove your current deployment file and recreate it!. Continue? [y/N]" && \
	113	read y && \
	114	[ "$$y" = "y" -o "$$y" = "Y" ] && \
	115	$(NIXOPS) delete --force -d $(NIXOPS_DEPLOYMENT); \
	116	fi
	117	pass show $(NIXOPS_CONFIG_PASS_SUBTREE_PATH)/Nixops/Deployment \| $(NIXOPS) import
	118	$(NIXOPS) modify -d $(NIXOPS_DEPLOYMENT) "$$(pwd)/default.nix"
	119	.PHONY: pull_deployment
	120
	121	deployment_is_set:
	122	$(NIXOPS) info -d $(NIXOPS_DEPLOYMENT) 2>/dev/null >/dev/null
	123	.PHONY: deployment_is_set
	124
	125	###### Push environment and deployment information to password store
	126	push: push_deployment push_environment;
	127	.PHONY: push
	128
	129	push_deployment:
	130	$(NIXOPS) export \| pass insert -m $(NIXOPS_CONFIG_PASS_SUBTREE_PATH)/Nixops/Deployment
	131	.PHONY: push_deployment
	132
	133	push_environment:
	134	ifndef NIXOPS_CONFIG_PASS_SUBTREE_REMOTE
	135	$(error "Please set NIXOPS_CONFIG_PASS_SUBTREE_REMOTE to the password-store subtree remote name")
	136	endif
	137	pass git subtree push --prefix=$(NIXOPS_CONFIG_PASS_SUBTREE_PATH) $(NIXOPS_CONFIG_PASS_SUBTREE_REMOTE) master
	138	.PHONY: push_environment