m3tam3re/self-host-playbook
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 2 Wiki Activity

Compare commits

base: m3tam3re:master
Branches Tags
m3tam3re:master m3tam3re:develop/v0.1.0 m3tam3re:release/0.0.1
m3tam3re:v0.1.0 m3tam3re:v0.0.1
...
compare: m3tam3re:be9f216f4c6222aed7bba842d4f42f544352657a
Branches Tags
m3tam3re:master m3tam3re:develop/v0.1.0 m3tam3re:release/0.0.1
m3tam3re:v0.1.0 m3tam3re:v0.0.1

12 Commits
master ... be9f216f4c

Author SHA1 Message Date
m3tam3re
be9f216f4c +hostname setting 2025-04-11 10:05:58 +02:00
m3tam3re
1980fa4178 +hostname setting 2025-04-11 10:00:48 +02:00
m3tam3re
81b2811569 +hostname setting 2025-04-11 09:45:32 +02:00
m3tam3re
f48ac1c9ae +hostname setting 2025-04-11 09:36:53 +02:00
m3tam3re
1405f80bfc fix deploy input 2025-04-10 16:03:08 +02:00
m3tam3re
2bd4bdbd1d fix deploy input 2025-04-10 16:02:51 +02:00
m3tam3re
9d3abd60fc fix deploy input 2025-04-10 16:00:54 +02:00
m3tam3re
412bc59408 fix systemrebuild on add services 2025-04-10 14:43:19 +02:00
m3tam3re
40d32b7133 fix systemrebuild on add services 2025-04-10 13:56:42 +02:00
m3tam3re
9a258602a2 Basic config input update 2025-04-10 13:25:37 +02:00
m3tam3re
ae316fb7f6 Basic config input update 2025-04-10 13:00:36 +02:00
m3tam3re
fc512b0248 Bugfix installer: SSH config port 2025-04-10 12:46:24 +02:00
5 changed files with 135 additions and 44 deletions
Expand all files Collapse all files

1
configuration.nix
View File

@ -60,6 +60,7 @@ in {
# Networking # Networking
networking = { networking = {
hostName = jsonConfig.hostname;
firewall = { firewall = {
enable = true; enable = true;
# Only allow necessary ports # Only allow necessary ports

14
flake.lock generated
View File

@ -6,11 +6,11 @@
"nixpkgs-unstable": "nixpkgs-unstable" "nixpkgs-unstable": "nixpkgs-unstable"
}, },
"locked": { "locked": {
"lastModified": 1741872348, "lastModified": 1744286132,
"narHash": "sha256-4d0S59c/rR5lcfqeqw3z+k4FlDwyci6dwrwMPgKuO/g=", "narHash": "sha256-b+QaraEq2KS6X3PeAcm2J0afIQjvUEJ61Oj1OHiELzA=",
"ref": "stable", "ref": "stable",
"rev": "50af8d01fb5d5d5616bd1d5c38ced9946f863ca4", "rev": "dd405780a03515688101b0b66c8757ce817f1ad7",
"revCount": 6, "revCount": 9,
"type": "git", "type": "git",
"url": "https://code.m3tam3re.com/m3tam3re/self-host-playbook-base" "url": "https://code.m3tam3re.com/m3tam3re/self-host-playbook-base"
}, },
@ -27,11 +27,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1741786315, "lastModified": 1744145203,
"narHash": "sha256-VT65AE2syHVj6v/DGB496bqBnu1PXrrzwlw07/Zpllc=", "narHash": "sha256-I2oILRiJ6G+BOSjY+0dGrTPe080L3pbKpc+gCV3Nmyk=",
"owner": "nix-community", "owner": "nix-community",
"repo": "disko", "repo": "disko",
"rev": "0d8c6ad4a43906d14abd5c60e0ffe7b587b213de", "rev": "76c0a6dba345490508f36c1aa3c7ba5b6b460989",
"type": "github" "type": "github"
}, },
"original": { "original": {

5
flake.nix
View File

@ -16,7 +16,6 @@
}; };
deploy-rs = { deploy-rs = {
url = "github:serokell/deploy-rs"; url = "github:serokell/deploy-rs";
follows = "nixpkgs";
}; };
}; };
@ -43,8 +42,8 @@
inherit self; inherit self;
}; };
}; };
deploy.nodes.server = { deploy.nodes.${jsonConfig.hostname} = {
hostname = "self-host-playbook"; hostname = jsonConfig.hostname;
profiles.system = { profiles.system = {
sshUser = jsonConfig.username; sshUser = jsonConfig.username;
user = "root"; user = "root";

63
install.sh
View File

@ -65,6 +65,14 @@ setup_latest_version() {
local target_version=$1 local target_version=$1
local dir_name=$2 local dir_name=$2
# Safety check: Ensure we're in the self-host-playbook directory
local current_dir=$(basename "$(pwd)")
if [ "$current_dir" != "self-host-playbook" ]; then
echo "❌ Error: Must be in 'self-host-playbook' directory to setup latest version"
echo "Current directory: $(pwd)"
return 1
}
echo "⬇️ Downloading version $target_version..." echo "⬇️ Downloading version $target_version..."
TEMP_DIR=$(mktemp -d) TEMP_DIR=$(mktemp -d)
@ -78,7 +86,13 @@ setup_latest_version() {
if ! nix flake clone --quiet "git+https://code.m3tam3re.com/m3tam3re/self-host-playbook?ref=v${target_version}" --dest "$CLONE_DIR" 2>/dev/null; then if ! nix flake clone --quiet "git+https://code.m3tam3re.com/m3tam3re/self-host-playbook?ref=v${target_version}" --dest "$CLONE_DIR" 2>/dev/null; then
echo "❌ Failed to clone repository" echo "❌ Failed to clone repository"
return 1 return 1
fi }
# Additional safety check before copying files
if [ ! -f "$CLONE_DIR/flake.nix" ]; then
echo "❌ Error: Downloaded content doesn't appear to be a valid self-host-playbook"
return 1
}
# Copy files from clone to target directory # Copy files from clone to target directory
cp -r "$CLONE_DIR"/* "$dir_name/" cp -r "$CLONE_DIR"/* "$dir_name/"
@ -88,12 +102,25 @@ setup_latest_version() {
# Function to setup from template # Function to setup from template
setup_from_template() { setup_from_template() {
# Ensure we're in the correct directory
local current_dir=$(basename "$(pwd)")
if [ "$current_dir" != "self-host-playbook" ]; then
echo "❌ Error: Must be in 'self-host-playbook' directory"
exit 1
}
# Create backup if directory is not empty # Create backup if directory is not empty
if [ -n "$(ls -A)" ]; then if [ -n "$(ls -A)" ]; then
local CURRENT_VERSION=$(date +%Y%m%d_%H%M%S) local CURRENT_VERSION=$(date +%Y%m%d_%H%M%S)
local backup_dir="backup_${CURRENT_VERSION}_$(date +%Y%m%d_%H%M%S)" local backup_dir="backup_${CURRENT_VERSION}_$(date +%Y%m%d_%H%M%S)"
echo "📑 Creating backup in $backup_dir..." echo "📑 Creating backup in $backup_dir..."
mkdir -p "$backup_dir" mkdir -p "$backup_dir"
# Add safety check for backup creation
if [ ! -d "$backup_dir" ]; then
echo "❌ Error: Failed to create backup directory"
exit 1
fi # Fixed: Changed } to fi
find . -maxdepth 1 ! -name "." ! -name ".." ! -name "$backup_dir" -exec cp -r {} "$backup_dir/" \; find . -maxdepth 1 ! -name "." ! -name ".." ! -name "$backup_dir" -exec cp -r {} "$backup_dir/" \;
echo "✅ Backup created successfully" echo "✅ Backup created successfully"
@ -112,7 +139,7 @@ setup_from_template() {
generate_ssh_key() { generate_ssh_key() {
local KEY_NAME="self-host-playbook" local KEY_NAME="self-host-playbook"
local KEY_PATH="$HOME/.ssh/${KEY_NAME}" local KEY_PATH="$HOME/.ssh/${KEY_NAME}"
W
if [ ! -f "$KEY_PATH" ]; then if [ ! -f "$KEY_PATH" ]; then
mkdir -p "$HOME/.ssh" mkdir -p "$HOME/.ssh"
echo "🔑 Generating new SSH key pair..." >&2 echo "🔑 Generating new SSH key pair..." >&2
@ -195,6 +222,7 @@ get_device_name() {
setup_ssh_config() { setup_ssh_config() {
local username=$1 local username=$1
local ip_address=$2 local ip_address=$2
local hostname=$3 # Add hostname parameter
local ssh_config_dir="$HOME/.ssh" local ssh_config_dir="$HOME/.ssh"
local ssh_config_file="$ssh_config_dir/config" local ssh_config_file="$ssh_config_dir/config"
local ssh_key_file="$ssh_config_dir/self-host-playbook" local ssh_key_file="$ssh_config_dir/self-host-playbook"
@ -203,19 +231,20 @@ setup_ssh_config() {
mkdir -p "$ssh_config_dir" mkdir -p "$ssh_config_dir"
chmod 700 "$ssh_config_dir" chmod 700 "$ssh_config_dir"
# Create or append to SSH config # Create or append to SSH config using hostname as the Host name
local config_entry="Host self-host-playbook local config_entry="Host $hostname
HostName $ip_address HostName $ip_address
User $username User $username
Port 2222
IdentityFile $ssh_key_file" IdentityFile $ssh_key_file"
# Check if entry already exists # Check if entry already exists
if ! grep -q "Host self-host-playbook" "$ssh_config_file" 2>/dev/null; then if ! grep -q "Host $hostname" "$ssh_config_file" 2>/dev/null; then
echo -e "\n$config_entry" >> "$ssh_config_file" echo -e "\n$config_entry" >> "$ssh_config_file"
echo "✅ Added SSH config entry" echo "✅ Added SSH config entry"
else else
# Update existing entry # Update existing entry
sed -i.bak "/Host self-host-playbook/,/IdentityFile.*/{ sed -i.bak "/Host $hostname/,/IdentityFile.*/{
s/HostName.*/HostName $ip_address/ s/HostName.*/HostName $ip_address/
s/User.*/User $username/ s/User.*/User $username/
}" "$ssh_config_file" }" "$ssh_config_file"
@ -278,10 +307,18 @@ echo ""
echo "📝 Please provide the following information:" echo "📝 Please provide the following information:"
echo "-------------------------------------------" echo "-------------------------------------------"
read -p "1. Enter target server IP address: " IP_ADDRESS read -p "1. Enter target server IP address: " IP_ADDRESS
read -p "2. Enter desired username for server access: " USERNAME read -p "2. Enter hostname for the server: " HOSTNAME
read -s -p "3. Enter desired password: " PASSWORD
# Validate hostname format
while ! [[ $HOSTNAME =~ ^[a-zA-Z0-9]([a-zA-Z0-9-]*[a-zA-Z0-9])?(\.[a-zA-Z0-9]([a-zA-Z0-9-]*[a-zA-Z0-9])?)*$ ]]; do
echo "❌ Invalid hostname format. Please use a valid hostname (e.g., my-server.example.com)"
read -p "Enter hostname for the server: " HOSTNAME
done
read -p "3. Enter desired username for server access: " USERNAME
read -s -p "4. Enter desired password: " PASSWORD
echo echo
echo "4. Enter domain names for services (must point to $IP_ADDRESS):" echo "5. Enter domain names for services (must point to $IP_ADDRESS):"
read -p " - Domain for Portainer: " PORTAINER_DOMAIN read -p " - Domain for Portainer: " PORTAINER_DOMAIN
read -p " - Domain for n8n: " N8N_DOMAIN read -p " - Domain for n8n: " N8N_DOMAIN
read -p " - Domain for Baserow: " BASEROW_DOMAIN read -p " - Domain for Baserow: " BASEROW_DOMAIN
@ -295,10 +332,10 @@ read -p "Enter your choice (1-2): " KEY_CHOICE
case $KEY_CHOICE in case $KEY_CHOICE in
1) 1)
INSTALL_COMMAND="nix run github:nix-community/nixos-anywhere -- --flake .#server root@$IP_ADDRESS" INSTALL_COMMAND="nix run github:nix-community/nixos-anywhere -- --flake .#$HOSTNAME root@$IP_ADDRESS"
;; ;;
2) 2)
INSTALL_COMMAND="nix run github:nix-community/nixos-anywhere -- --flake .#server -i $SSH_KEY_PATH root@$IP_ADDRESS" INSTALL_COMMAND="nix run github:nix-community/nixos-anywhere -- --flake .#$HOSTNAME -i $SSH_KEY_PATH root@$IP_ADDRESS"
;; ;;
*) *)
echo "❌ Invalid choice" echo "❌ Invalid choice"
@ -416,7 +453,7 @@ echo "This process might take several minutes..."
# Run nixos-anywhere installation # Run nixos-anywhere installation
$INSTALL_COMMAND && { $INSTALL_COMMAND && {
echo "🔧 Setting up SSH configuration..." echo "🔧 Setting up SSH configuration..."
setup_ssh_config "$USERNAME" "$IP_ADDRESS" setup_ssh_config "$USERNAME" "$IP_ADDRESS" "$HOSTNAME"
echo echo
echo "🎉 Installation completed successfully!" echo "🎉 Installation completed successfully!"
echo "=====================================>" echo "=====================================>"
@ -426,7 +463,7 @@ $INSTALL_COMMAND && {
echo "- Baserow: https://$BASEROW_DOMAIN" echo "- Baserow: https://$BASEROW_DOMAIN"
echo echo
echo "To connect to your server, use:" echo "To connect to your server, use:"
echo "ssh self-host-playbook" echo "ssh $HOSTNAME"
echo echo
install_deploy_rs install_deploy_rs
echo echo

96
update.sh
View File

@ -86,6 +86,20 @@ show_changelog() {
perform_update() { perform_update() {
local target_version=$1 local target_version=$1
local backup_dir=$2 local backup_dir=$2
# Ensure we're in the correct directory
local current_dir=$(basename "$(pwd)")
if [ "$current_dir" != "self-host-playbook" ]; then
echo "❌ Error: Must be in 'self-host-playbook' directory"
return 1
}
# Verify essential files exist before proceeding
if [ ! -f "config.json" ] || [ ! -d "env" ]; then
echo "❌ Error: Essential files missing. Are you in the correct directory?"
return 1
}
echo "⬇️ Downloading version $target_version..." echo "⬇️ Downloading version $target_version..."
TEMP_DIR=$(mktemp -d) TEMP_DIR=$(mktemp -d)
@ -99,7 +113,13 @@ perform_update() {
if ! nix flake clone --quiet "git+https://code.m3tam3re.com/m3tam3re/self-host-playbook?ref=v${target_version}" --dest "$CLONE_DIR" 2>/dev/null; then if ! nix flake clone --quiet "git+https://code.m3tam3re.com/m3tam3re/self-host-playbook?ref=v${target_version}" --dest "$CLONE_DIR" 2>/dev/null; then
echo "❌ Failed to clone repository" echo "❌ Failed to clone repository"
return 1 return 1
fi }
# Verify downloaded content
if [ ! -f "$CLONE_DIR/flake.nix" ]; then
echo "❌ Error: Downloaded content appears invalid"
return 1
}
# Remove current directory contents except backup # Remove current directory contents except backup
echo "🗑️ Cleaning current directory..." echo "🗑️ Cleaning current directory..."
@ -109,11 +129,27 @@ perform_update() {
echo "📋 Installing new version..." echo "📋 Installing new version..."
cp -r "$CLONE_DIR"/* . cp -r "$CLONE_DIR"/* .
# Restore configuration files from backup # Verify essential files were copied
echo "🔄 Restoring configuration files..." if [ ! -f "flake.nix" ]; then
cp -r "${backup_dir}/config.json" \ echo "❌ Error: Failed to copy new version files"
"${backup_dir}/env" . 2>/dev/null || true return 1
}
# Restore configuration files from backup with validation
echo "🔄 Restoring configuration files..."
if [ -f "${backup_dir}/config.json" ]; then
cp -r "${backup_dir}/config.json" . || {
echo "❌ Error: Failed to restore config.json"
return 1
}
}
if [ -d "${backup_dir}/env" ]; then
cp -r "${backup_dir}/env" . || {
echo "❌ Error: Failed to restore env directory"
return 1
}
}
return 0 return 0
} }
@ -121,6 +157,7 @@ perform_update() {
setup_ssh_config() { setup_ssh_config() {
local username=$1 local username=$1
local ip_address=$2 local ip_address=$2
local hostname=$3 # Add hostname parameter
local ssh_config_dir="$HOME/.ssh" local ssh_config_dir="$HOME/.ssh"
local ssh_config_file="$ssh_config_dir/config" local ssh_config_file="$ssh_config_dir/config"
local ssh_key_file="$ssh_config_dir/self-host-playbook" local ssh_key_file="$ssh_config_dir/self-host-playbook"
@ -129,19 +166,20 @@ setup_ssh_config() {
mkdir -p "$ssh_config_dir" mkdir -p "$ssh_config_dir"
chmod 700 "$ssh_config_dir" chmod 700 "$ssh_config_dir"
# Create or append to SSH config # Create or append to SSH config using hostname as the Host name
local config_entry="Host self-host-playbook local config_entry="Host $hostname
HostName $ip_address HostName $ip_address
User $username User $username
Port 2222
IdentityFile $ssh_key_file" IdentityFile $ssh_key_file"
# Check if entry already exists # Check if entry already exists
if ! grep -q "Host self-host-playbook" "$ssh_config_file" 2>/dev/null; then if ! grep -q "Host $hostname" "$ssh_config_file" 2>/dev/null; then
echo -e "\n$config_entry" >> "$ssh_config_file" echo -e "\n$config_entry" >> "$ssh_config_file"
echo "✅ Added SSH config entry" echo "✅ Added SSH config entry"
else else
# Update existing entry # Update existing entry
sed -i.bak "/Host self-host-playbook/,/IdentityFile.*/{ sed -i.bak "/Host $hostname/,/IdentityFile.*/{
s/HostName.*/HostName $ip_address/ s/HostName.*/HostName $ip_address/
s/User.*/User $username/ s/User.*/User $username/
}" "$ssh_config_file" }" "$ssh_config_file"
@ -152,24 +190,25 @@ setup_ssh_config() {
chmod 600 "$ssh_config_file" chmod 600 "$ssh_config_file"
} }
update_config_json() { update_config_value() {
local ip_address=$1 local key=$1
local value=$2
local config_file="config.json" local config_file="config.json"
# Read existing config # Read existing config
local config local config
config=$(cat "$config_file") config=$(cat "$config_file")
# Update or add ipAddress field # Update or add the field
if jq -e '.ipAddress' "$config_file" >/dev/null 2>&1; then if jq -e ".$key" "$config_file" >/dev/null 2>&1; then
config=$(echo "$config" | jq --arg ip "$ip_address" '.ipAddress = $ip') config=$(echo "$config" | jq --arg key "$key" --arg value "$value" '.[$key] = $value')
else else
config=$(echo "$config" | jq --arg ip "$ip_address" '. + {ipAddress: $ip}') config=$(echo "$config" | jq --arg key "$key" --arg value "$value" '. + {($key): $value}')
fi fi
# Write back to file # Write back to file
echo "$config" | jq '.' > "$config_file" echo "$config" | jq '.' > "$config_file"
echo "✅ Updated IP address in config.json" echo "✅ Updated $key in config.json"
} }
install_deploy_rs() { install_deploy_rs() {
@ -203,6 +242,7 @@ fi
USERNAME=$(jq -r '.username' config.json) USERNAME=$(jq -r '.username' config.json)
IP_ADDRESS=$(jq -r '.ipAddress // empty' config.json) IP_ADDRESS=$(jq -r '.ipAddress // empty' config.json)
HOSTNAME=$(jq -r '.hostname // empty' config.json)
if [ -z "$USERNAME" ]; then if [ -z "$USERNAME" ]; then
echo "❌ Error: Could not read username from config.json" echo "❌ Error: Could not read username from config.json"
@ -221,7 +261,22 @@ if [ -z "$IP_ADDRESS" ]; then
fi fi
# Update config.json with the new IP address # Update config.json with the new IP address
update_config_json "$IP_ADDRESS" update_config_value "ipAddress" "$IP_ADDRESS"
fi
# If hostname is not in config.json, prompt for it
if [ -z "$HOSTNAME" ]; then
echo " No hostname found in config.json"
read -p "Enter the hostname for your server: " HOSTNAME
# Validate hostname format (basic validation)
if ! [[ $HOSTNAME =~ ^[a-zA-Z0-9]([a-zA-Z0-9-]*[a-zA-Z0-9])?(\.[a-zA-Z0-9]([a-zA-Z0-9-]*[a-zA-Z0-9])?)*$ ]]; then
echo "❌ Error: Invalid hostname format"
exit 1
fi
# Update config.json with the new hostname
update_config_value "hostname" "$HOSTNAME"
fi fi
VERSION_FILE="version.json" VERSION_FILE="version.json"
@ -262,12 +317,11 @@ if [[ $REPLY =~ ^[Yy]$ ]]; then
# Setup SSH configuration # Setup SSH configuration
echo echo
echo "🔧 Setting up SSH configuration..." echo "🔧 Setting up SSH configuration..."
setup_ssh_config "$USERNAME" "$IP_ADDRESS" setup_ssh_config "$USERNAME" "$IP_ADDRESS" "$HOSTNAME"
echo echo
install_deploy_rs install_deploy_rs
echo echo "🚀 Applying the update to your system..."
echo "To apply the changes, run:" deploy .#$HOSTNAME
echo "sudo nixos-rebuild switch"
echo echo
echo "If you encounter any issues, your backup is available in $backup_dir" echo "If you encounter any issues, your backup is available in $backup_dir"
else else