nixpkgs/nixos/modules/services/security/hologram-agent.nix

{pkgs, config, lib, ...}:

with lib;

let
  cfg = config.services.hologram-agent;

  cfgFile = pkgs.writeText "hologram-agent.json" (builtins.toJSON {
    host = cfg.dialAddress;
  });
in {
  options = {
    services.hologram-agent = {
      enable = mkOption {
        type = types.bool;
        default = false;
        description = "Whether to enable the Hologram agent for AWS instance credentials";
      };

      dialAddress = mkOption {
        type        = types.str;
        default     = "localhost:3100";
        description = "Hologram server and port.";
      };

      httpPort = mkOption {
        type        = types.str;
        default     = "80";
        description = "Port for metadata service to listen on.";
      };

    };
  };

  config = mkIf cfg.enable {
    boot.kernelModules = [ "dummy" ];

    networking.interfaces.dummy0.ipv4.addresses = [
      { address = "169.254.169.254"; prefixLength = 32; }
    ];

    systemd.services.hologram-agent = {
      description = "Provide EC2 instance credentials to machines outside of EC2";
      after       = [ "network.target" ];
      wantedBy    = [ "multi-user.target" ];
      requires    = [ "network-link-dummy0.service" "network-addresses-dummy0.service" ]; 
      preStart = ''
        /run/current-system/sw/bin/rm -fv /run/hologram.sock
      '';
      serviceConfig = {
        ExecStart = "${pkgs.hologram.bin}/bin/hologram-agent -debug -conf ${cfgFile} -port ${cfg.httpPort}";
      };
    };

  };

  meta.maintainers = with lib.maintainers; [ nand0p ];
}
hologram: 8d86e3f -> d20d1c3 - Updates dependencies - Adds configuration module - Tested on Nixos Unstable 2017-02-01 11:26:55 -05:00			`{pkgs, config, lib, ...}:`

			`with lib;`

			`let`
			`cfg = config.services.hologram-agent;`

			`cfgFile = pkgs.writeText "hologram-agent.json" (builtins.toJSON {`
			`host = cfg.dialAddress;`
			`});`
			`in {`
			`options = {`
			`services.hologram-agent = {`
			`enable = mkOption {`
			`type = types.bool;`
			`default = false;`
			`description = "Whether to enable the Hologram agent for AWS instance credentials";`
			`};`

			`dialAddress = mkOption {`
			`type = types.str;`
			`default = "localhost:3100";`
			`description = "Hologram server and port.";`
			`};`

			`httpPort = mkOption {`
			`type = types.str;`
			`default = "80";`
			`description = "Port for metadata service to listen on.";`
			`};`

			`};`
			`};`

			`config = mkIf cfg.enable {`
Make sure dummy kernel module is loaded for hologram-agent. (cherry picked from commit eb873f6c78e1c5306956b4c9fd651b25a6b9c40c) 2017-09-20 10:57:54 +00:00			`boot.kernelModules = [ "dummy" ];`

nixos/modules: rename IP addresses/routes options 2017-12-03 06:02:45 +01:00			`networking.interfaces.dummy0.ipv4.addresses = [`
			`{ address = "169.254.169.254"; prefixLength = 32; }`
			`];`
hologram: 8d86e3f -> d20d1c3 - Updates dependencies - Adds configuration module - Tested on Nixos Unstable 2017-02-01 11:26:55 -05:00
			`systemd.services.hologram-agent = {`
			`description = "Provide EC2 instance credentials to machines outside of EC2";`
			`after = [ "network.target" ];`
			`wantedBy = [ "multi-user.target" ];`
			`requires = [ "network-link-dummy0.service" "network-addresses-dummy0.service" ];`
			`preStart = ''`
nixos/hologram-agent: /var/run -> /run 2018-12-19 22:41:49 +01:00			`/run/current-system/sw/bin/rm -fv /run/hologram.sock`
hologram: 8d86e3f -> d20d1c3 - Updates dependencies - Adds configuration module - Tested on Nixos Unstable 2017-02-01 11:26:55 -05:00			`'';`
			`serviceConfig = {`
			`ExecStart = "${pkgs.hologram.bin}/bin/hologram-agent -debug -conf ${cfgFile} -port ${cfg.httpPort}";`
			`};`
			`};`

			`};`

			`meta.maintainers = with lib.maintainers; [ nand0p ];`
			`}`