From 2ed8170a056d671082fad370efece199ea849be5 Mon Sep 17 00:00:00 2001 From: staticdev Date: Mon, 3 Jul 2023 21:30:27 +0200 Subject: [PATCH] Add nix flakes --- .github/workflows/tests.yml | 3 ++- CONTRIBUTING.md | 29 +++++++++++++++++++++++++++++ tasks/keypass-xc.yml | 2 +- tasks/office.yml | 2 +- tasks/packages.yml | 8 +++++--- tasks/pycharm.yml | 4 ++-- 6 files changed, 40 insertions(+), 8 deletions(-) diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 3f058d0..067261e 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -67,8 +67,9 @@ jobs: run: pip3 install --constraint=.github/workflows/constraints.txt ansible 'molecule-plugins[podman]' podman - name: Run Molecule tests - run: molecule test + run: molecule -v test env: PY_COLORS: "1" ANSIBLE_FORCE_COLOR: "1" MOLECULE_DISTRO: ${{ matrix.distro }} + XDG_CONFIG_HOME: "" diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md index 778a884..24f30c3 100644 --- a/CONTRIBUTING.md +++ b/CONTRIBUTING.md @@ -78,6 +78,35 @@ vagrant up The default password for root in the VM is `vagrant`. +#### Enabling contrib / non-free / non-free-firmware + +Keep in mind one maybe need extra steps to enable extra apt packages eg. to install `torbrowser-launcher` (from contrib) or `firmware-amd-graphics` (from non-free-firmware): + +1. comment out provision part of `Vagrant`: + + ``` + # Run playbook + #config.vm.provision "ansible" do |ansible| + # ansible.playbook = "main.yml" + # ansible.verbose = "vv" + #end + ``` + +1. run `vagrant up` and then `vagrant login` +1. edit `/etc/apt/sources.list` to add the desired streams eg.: + + ``` + deb https://deb.debian.org/debian bookworm main contrib non-free-firmware + deb-src https://deb.debian.org/debian bookworm main contrib non-free-firmware + deb https://deb.debian.org/debian bookworm-updates main contrib non-free-firmware + deb-src https://deb.debian.org/debian bookworm-updates main contrib non-free-firmware + deb https://deb.debian.org/debian-security bookworm-security main contrib non-free-firmware + deb-src https://deb.debian.org/debian-security bookworm-security main contrib non-free-firmware + deb https://deb.debian.org/debian bookworm-backports main contrib non-free-firmware + deb-src https://deb.debian.org/debian bookworm-backports main contrib non-free-firmware + ``` +1. run `vagrant provision` + ## How to submit changes Open a [pull request] to submit changes to this project. diff --git a/tasks/keypass-xc.yml b/tasks/keypass-xc.yml index 89bfd51..ec0ceba 100644 --- a/tasks/keypass-xc.yml +++ b/tasks/keypass-xc.yml @@ -9,7 +9,7 @@ - name: Install Keepass XC when: keepass_xc_cmd is failed ansible.builtin.command: - cmd: nix-env -iA nixpkgs.keepassxc + cmd: nix profile install nixpkgs#keepassxc environment: PATH: "{{ ansible_env.HOME + '/.nix-profile/bin:$PATH' }}" changed_when: true diff --git a/tasks/office.yml b/tasks/office.yml index 2cbb63f..d30a70f 100644 --- a/tasks/office.yml +++ b/tasks/office.yml @@ -12,7 +12,7 @@ - name: Install OnlyOffice when: onlyoffice_version_cmd is failed ansible.builtin.command: - cmd: nix-env -iA nixpkgs.onlyoffice-bin + cmd: nix profile install nixpkgs#onlyoffice-bin environment: PATH: "{{ ansible_env.HOME + '/.nix-profile/bin:$PATH' }}" changed_when: true diff --git a/tasks/packages.yml b/tasks/packages.yml index 9a2c935..645926f 100644 --- a/tasks/packages.yml +++ b/tasks/packages.yml @@ -22,6 +22,8 @@ - name: Install Nix package manager ansible.builtin.import_role: name: ableton.nix + vars: + nix_flakes: true - name: Add Nix to bash PATH ansible.builtin.lineinfile: @@ -30,7 +32,7 @@ insertafter: EOF state: present -- name: "Check installation of Nix package {{ item.name }}" +- name: "Check installation of Nix packages" ansible.builtin.command: "{{ item.check_cmd }}" environment: PATH: "{{ ansible_env.HOME + '/.nix-profile/bin:$PATH' }}" @@ -41,8 +43,8 @@ loop_control: index_var: package_index -- name: "Install Nix package {{ item.name }}" - ansible.builtin.command: "nix-env -iA nixpkgs.{{ item.name }}" +- name: "Install Nix packages" + ansible.builtin.command: "nix profile install nixpkgs#{{ item.name }}" environment: PATH: "{{ ansible_env.HOME + '/.nix-profile/bin:$PATH' }}" when: package_check_cmd.results[package_index].failed diff --git a/tasks/pycharm.yml b/tasks/pycharm.yml index 8c12c26..5f18fec 100644 --- a/tasks/pycharm.yml +++ b/tasks/pycharm.yml @@ -12,7 +12,7 @@ - name: Install Pycharm professional when: pycharm_version_cmd is failed ansible.builtin.command: - cmd: nix-env -iA nixpkgs.jetbrains.pycharm-professional --impure + cmd: nix profile install nixpkgs#jetbrains.pycharm-professional --impure environment: NIXPKGS_ALLOW_UNFREE: "1" PATH: "{{ ansible_env.HOME + '/.nix-profile/bin:$PATH' }}" @@ -31,7 +31,7 @@ - name: Install Pycharm community when: pycharm_version_cmd is failed ansible.builtin.command: - cmd: nix-env -iA nixpkgs.jetbrains.pycharm-community + cmd: nix profile install nixpkgs#jetbrains.pycharm-community environment: PATH: "{{ ansible_env.HOME + '/.nix-profile/bin:$PATH' }}" changed_when: true