Luj/snowfield
1
0
Fork 0
mirror of https://github.com/JulienMalka/snowfield.git synced 2025-03-25 21:30:52 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: add dns module

Browse source
This commit is contained in:
Julien Malka 2024-08-12 18:15:30 +02:00
parent 0ba90fdb2b
commit 1db71f86db
Signed by: Luj
GPG key ID: 6FC74C847011FD83
4 changed files with 131 additions and 17 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

37
lib/default.nix
View file

@ -1,7 +1,16 @@
inputs: final: _prev:
with builtins;
let
evalMeta =
raw:
(_prev.evalModules {
modules = [
(import ../modules/meta/default.nix)
{ machine.meta = raw; }
];
}).config.machine.meta;
in
rec {
importConfig =
path:
@ -37,29 +46,25 @@ rec {
};
};
evalMeta =
raw:
(_prev.evalModules {
modules = [
(import ../modules/meta/default.nix)
{ machine.meta = raw; }
];
}).config.machine.meta;
listToAttrsWithMerge =
l:
mapAttrs (_: v: _prev.fold (elem: acc: elem.value // acc) { } v) (builtins.groupBy (e: e.name) l);
mapAttrsWithMerge = f: set: listToAttrsWithMerge (map (attr: f attr set.${attr}) (attrNames set));
snowfield = mapAttrs (
name: _value:
let
machineF = import (../machines + "/${name}/default.nix");
in
evalMeta
(import (../machines + "/${name}/default.nix") {
inherit inputs;
config = null;
pkgs = null;
lib = null;
modulesPath = null;
}).machine.meta
(machineF ((mapAttrs (_: _: null) (builtins.functionArgs machineF)) // { inherit inputs; }))
.machine.meta
) (final.filterAttrs (_: v: v == "directory") (readDir ../machines));
dns = import ./dns.nix {
lib = final;
dnsLib = (import inputs.dns).lib;
};
}

2
machines/gustave/default.nix
View file

@ -1,11 +1,11 @@
{ pkgs, inputs, ... }:
{
imports = [
../../users/default.nix
../../users/julien.nix
./hardware.nix
./home-julien.nix
./nsd.nix
];
machine.meta = {

48
machines/gustave/nsd.nix Normal file
View file

@ -0,0 +1,48 @@
{
config,
lib,
inputs,
nixosConfigurations,
...
}:
let
zonesToList = lib.mapAttrsToList (name: value: { ${name} = value; });
zonesFromConfig = lib.mkMerge (
lib.fold (elem: acc: acc ++ (zonesToList elem.config.machine.meta.zones)) [ ] (
lib.attrValues nixosConfigurations
)
);
dnsLib = (import inputs.dns).lib;
evalZones =
zones:
(lib.evalModules {
modules = [
{
options = {
zones = lib.mkOption {
type = lib.types.attrsOf dnsLib.types.zone;
description = "DNS zones";
};
};
config = {
inherit zones;
};
}
];
}).config.zones;
in
{
services.nsd = {
enable = true;
interfaces = [
config.machine.meta.ips.public.ipv4
config.machine.meta.ips.public.ipv6
];
zones = lib.mapAttrs (_: value: {
data = builtins.toString value;
provideXFR = [ "192.168.0.0/21 NOKEY" ];
}) (evalZones zonesFromConfig);
};
}

61
modules/dns/default.nix Normal file
View file

@ -0,0 +1,61 @@
{
lib,
config,
inputs,
...
}:
let
cfg = config.machine.meta;
allowedDomains = [
"luj.fr"
"julienmalka.me"
"malka.family"
"luj"
"luj-static.page"
];
isVPNDomain = domain: lib.dns.domainToZone [ "luj" ] domain != null;
dnsLib = (import inputs.dns).lib;
SOA = {
nameServer = "ns";
adminEmail = "dns@malka.sh";
serial = 0;
};
defaults = {
inherit SOA;
};
in
with lib;
{
options = {
machine.meta.zones = mkOption {
type = types.attrsOf dnsLib.types.zone;
default = { };
};
};
config =
let
# list of domains that are defined in the current configuration throught virtualHosts
domains = lib.dns.domainsFromConfiguration allowedDomains config;
# AttrSet domain -> { records }
recordsPerDomain = map (
domain:
mapAttrs' (
n: v:
nameValuePair (lib.dns.domainToZone allowedDomains n) (
let
subdomain = lib.dns.getDomainPrefix allowedDomains n;
in
(if elem subdomain allowedDomains then v else { subdomains."${subdomain}" = v; }) // defaults
)
) (lib.dns.domainToRecords domain cfg (isVPNDomain domain))
) domains;
in
{
machine.meta.zones = lib.mkMerge recordsPerDomain;
};
}