#nixos-kubernetes on 2018-10-30

06:18 x4A6F has quit [Ping timeout: 250 seconds]

06:23 x4A6F has joined #nixos-kubernetes

09:08 johanot has joined #nixos-kubernetes

15:22 ixxie has joined #nixos-kubernetes

15:34 <ixxie> johanot: sorry to repeat the same questions, but I will try this week or next to try and replicate a simple version of your addon system. If I recall correctly, the basics is just making a nixos module, which calls kubectl apply -f when the systemd service begins and kubectl delete -f when it stops?

15:35 <ixxie> If it is not too much trouble maybe you could fish out one obfuscated example I could build on?

15:55 ixxie has quit [Ping timeout: 240 seconds]

16:02 ixxie has joined #nixos-kubernetes

16:30 drakonis1 has joined #nixos-kubernetes

16:31 <ixxie> johanot: I just installed dex-oidc as a NixOS system package but I guess the better way would be to run it as a Kubernetes deployment.... is that how you did it?

16:32 <johanot> yes.. We run it as a k8s deployment

16:33 <ixxie> in that case I will defer back to my previous questions ^^

16:35 <ixxie> even a very very barebones example would help enormously, because then I could protoype stuff (which is my only goal for the foreseeable future)

16:36 andi- has joined #nixos-kubernetes

16:38 <johanot> ixxie: So basically we have this yaml-file in our repo: https://gist.github.com/johanot/9b204ac781d51f53091d294c0be54472

16:38 <johanot> including secrets, which I've replaced with SECRET in the gist

16:39 <johanot> We then have a nix expression that maps over every yaml/json file in a specific directory and creates individual systemd-units for each of them.

16:40 <ixxie> johanot: any chance to see an example of that sort of Nix file? even just a dummy?

16:41 <srhb> Wow, I notice I haven't been keeping up here

16:41 <srhb> colemickens: I was at the company johanot works at now :)

16:42 <ixxie> (btw johanot/srhb - in harranguing you with questions I have been assuming that you have no time for other FOSS projects, but will be happy to be corrected and pitch you what we are doing)

16:42 <srhb> It's called DBC A/S and deals with library infrastructure and data for the Danish libraries

16:42 <srhb> I indeed have very little time for OSS currently, but I will try to improve that situation in mid-term future :)

16:43 <srhb> So many half-baked projects in ~/src :-P

16:43 <ixxie> srhb: yeah I figured as much

16:44 <ixxie> I am thinking along the lines of kubepkgs

16:45 <ixxie> if you catch my drift

16:45 <srhb> Definitely

16:45 <ixxie> we are working on a front-end for that sort of thing

16:45 <srhb> Oh?

16:46 <ixxie> the thinking is if you have a kubernixos cluster, kubepkgs, dex and a web GUI we could have a sort of Social Operating System

16:46 <srhb> SOS? :-P

16:47 <johanot> ixxie: No secrets here.. Just pretty messy code :) -> https://gist.github.com/johanot/2de1390a04e7c357bde6dc0abcaec5b8

16:47 <ixxie> i.e. just install arbitrary web apps on a community cloud

16:47 <ixxie> thanks a bunch johanot! really appreciated

16:48 <johanot> srhb: you're pretty good at name-crafting! Will SOS be "Plug'n'Pipe" compatible then? :P

16:49 <srhb> Clearly!

16:49 <srhb> btw I don't recognize that dex yaml

16:49 <srhb> Didn't I make a dex fork for you?

16:49 <ixxie> johanot: plug'n'pipe?

16:49 <srhb> Or was that something else...

16:49 <johanot> srhb: Dex is (still not) forked

16:49 <srhb> Oh.

16:50 <srhb> I forget. I think it was some of the stuff I panic-hacked together during my last days. xD

16:50 <johanot> we haven't touched that yaml nor the "addon-manager" code for a looong time. it could definitely use a bruchup :P

16:51 <srhb> Yeah, no doubt...

16:51 <srhb> The yaml doesn't look horrible though. I mean, I guess it does what it's supposed to. :D

16:51 <johanot> srhb: Sure.. But ideally I want to convert it to Nix-attrs and use toJSON :P

16:52 <srhb> Right right.

16:52 <ixxie> johanot: I don't suppose I can just reuse that addon.nix though right?

16:54 <johanot> ixxie: meeh.. there are a bunch of dependencies. Not really something I feel comfortable recommending as-is.

16:54 <ixxie> okay yeah

16:54 <ixxie> I am also in anycase not a fan of the all-manifests-in-one-bag approach

16:55 <ixxie> I was thinking to make some library for this and have manifest.nix with the source repos

16:57 <ixxie> this way a kubepkgs could still be assembled with some nixified manifests and references to dependent manifests could be specified locally

16:57 <ixxie> if that makes sense

16:59 <ixxie> johanot: still curious about the 'plug'n'pipe' thing xD

17:02 <srhb> ixxie: That was me commenting on some k8s "best practices" the other day

17:03 <srhb> Which were basically just curl gist.github.com/k8s... | sudo sh

17:03 <srhb> And I think it was actualy pipe 'n pray

17:04 <ixxie> lol

17:10 <ixxie> johanot: anyway I meant not so much as a recommendation for production, but more with regards to licensing if I reuse some code fragments

17:11 x4A6F is now known as Ox4A6F

17:13 <srhb> Supposedly DBC open sources everything... :-)

17:40 <ixxie> heh

17:40 <ixxie> anyway, thanks a bunch johanot

17:41 <ixxie> will digest this stuff

17:41 <ixxie> have a good one

17:41 ixxie has quit [Remote host closed the connection]

18:02 <johanot> sry. was off to dinner.. Don't know if you read the logs ixxie, but if you do... No licensing concerns. Just far-from-best-practise code. :)

19:16 johanot has quit [Quit: WeeChat 2.2]

21:52 drakonis1 has quit [Quit: WeeChat 2.2]