ehmry
/
nix-processmgmt-services
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
nix-processmgmt-services/tests/disnix/bare/default.nix

45 lines
1.5 KiB
Nix
Raw Blame History

{ pkgs, testService, processManagers, profiles, nix-processmgmt }:
let
env = "NIX_PATH='nixpkgs=${<nixpkgs>}' SSH_OPTS='-o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no' DISNIX_REMOTE_CLIENT=disnix-client";
in
testService {
name = "disnix";
exprFile = ../../../example-deployments/disnix/processes-bare.nix;
extraParams = {
inherit nix-processmgmt;
};
systemPackages = [ pkgs.disnix ];
initialTests = {forceDisableUserChange, ...}:
let
homeDir = if forceDisableUserChange then "/home/unprivileged" else "/root";
in
''
machine.succeed("cd ${homeDir}")
machine.succeed('ssh-keygen -t ecdsa -f key -N ""')
machine.succeed("mkdir -m 700 ${homeDir}/.ssh")
machine.succeed("cp key.pub ${homeDir}/.ssh/authorized_keys")
machine.succeed("chmod 600 ${homeDir}/.ssh/authorized_keys")
machine.succeed("cp key ${homeDir}/.ssh/id_dsa")
machine.succeed("chmod 600 ${homeDir}/.ssh/id_dsa")
'';
readiness = {instanceName, instance, ...}:
pkgs.lib.optionalString (instanceName == "sshd") ''
machine.wait_for_open_port(${toString instance.port})
'';
tests = {instanceName, instance, forceDisableUserChange, ...}:
pkgs.lib.optionalString (instanceName == "disnix-service") ''
machine.succeed(
"${env} disnix-capture-infra ${../infra-bootstrap.nix} | grep 'process = {'"
)
'';
inherit processManagers;
# We don't support unprivileged multi-user deployments
profiles = builtins.filter (profile: profile == "privileged") profiles;
}
Reference in New Issue View Git Blame Copy Permalink