krops/README.md

# krops (krebs ops)

krops is a lightweigt toolkit to deploy nixos systems, remotely or locally.

fancy features include:
- store your secrets in passwordstore
- build your system remotely
- minimal overhead
- run from custom nixpkgs branch/checkout/fork

minimal example:

create a krops.nix somewhere
```
let
  #krops = ./.;
  krops = builtins.fetchGit {
    url = https://cgit.krebsco.de/krops/;
    ref = "master";
  };

  lib = import "${krops}/lib";
  pkgs = import "${krops}/pkgs" {};

  source = lib.evalSource [{
    nixpkgs.git = {
      ref = "origin/nixos-18.03";
      url = https://github.com/NixOS/nixpkgs-channels;
    };
    nixos-config.file = toString (pkgs.writeText "nixos-config" ''
      { pkgs, ... }: {

        fileSystems."/" = { device = "/dev/sda1"; };
        boot.loader.systemd-boot.enable = true;
        services.openssh.enable = true;
        environment.systemPackages = [ pkgs.git ];
        users.users.root.openssh.authorizedKeys.keys = [
          "ssh-rsa ADD_YOUR_OWN_PUBLIC_KEY_HERE user@localhost"
        ];
      }
    '');
  }];
in
  pkgs.krops.writeDeploy "deploy" {
    source = source;
    target = "root@192.168.56.101";
  }
```

and run `$(nix-build krops.nix)`. This results in a script which deploys the machine via ssh & rsync on the target machine.
update README.md 2018-05-01 16:55:06 +02:00			`# krops (krebs ops)`
init README.md 2018-05-01 15:56:49 +02:00
update README.md 2018-05-01 16:55:06 +02:00			`krops is a lightweigt toolkit to deploy nixos systems, remotely or locally.`
init README.md 2018-05-01 15:56:49 +02:00
			`fancy features include:`
			`- store your secrets in passwordstore`
			`- build your system remotely`
			`- minimal overhead`
			`- run from custom nixpkgs branch/checkout/fork`

			`minimal example:`

update README.md 2018-05-01 16:55:06 +02:00			`create a krops.nix somewhere`
init README.md 2018-05-01 15:56:49 +02:00			```
			`let`
update README.md 2018-05-01 16:55:06 +02:00			`#krops = ./.;`
readme: use builtins.fetchGit to follow master 2018-05-03 21:50:48 +02:00			`krops = builtins.fetchGit {`
update README.md 2018-05-01 16:55:06 +02:00			`url = https://cgit.krebsco.de/krops/;`
readme: use builtins.fetchGit to follow master 2018-05-03 21:50:48 +02:00			`ref = "master";`
init README.md 2018-05-01 15:56:49 +02:00			`};`

update README.md 2018-05-01 16:55:06 +02:00			`lib = import "${krops}/lib";`
			`pkgs = import "${krops}/pkgs" {};`
init README.md 2018-05-01 15:56:49 +02:00
			`source = lib.evalSource [{`
			`nixpkgs.git = {`
readme source: follow nixos-18.03 2018-05-03 21:51:36 +02:00			`ref = "origin/nixos-18.03";`
			`url = https://github.com/NixOS/nixpkgs-channels;`
init README.md 2018-05-01 15:56:49 +02:00			`};`
update README.md 2018-05-01 16:55:06 +02:00			`nixos-config.file = toString (pkgs.writeText "nixos-config" ''`
			`{ pkgs, ... }: {`

			`fileSystems."/" = { device = "/dev/sda1"; };`
			`boot.loader.systemd-boot.enable = true;`
			`services.openssh.enable = true;`
			`environment.systemPackages = [ pkgs.git ];`
readme: add dummy ssh key authorization 2018-05-03 21:52:15 +02:00			`users.users.root.openssh.authorizedKeys.keys = [`
			`"ssh-rsa ADD_YOUR_OWN_PUBLIC_KEY_HERE user@localhost"`
			`];`
init README.md 2018-05-01 15:56:49 +02:00			`}`
update README.md 2018-05-01 16:55:06 +02:00			`'');`
init README.md 2018-05-01 15:56:49 +02:00			`}];`
			`in`
update README.md 2018-05-01 16:55:06 +02:00			`pkgs.krops.writeDeploy "deploy" {`
init README.md 2018-05-01 15:56:49 +02:00			`source = source;`
update README.md 2018-05-01 16:55:06 +02:00			`target = "root@192.168.56.101";`
init README.md 2018-05-01 15:56:49 +02:00			`}`
			```

update README.md 2018-05-01 16:55:06 +02:00			and run `$(nix-build krops.nix)`. This results in a script which deploys the machine via ssh & rsync on the target machine.