2025-12-20 23:13:51 -05:00
|
|
|
# unpackPhase
|
|
|
|
|
# patchPhase
|
|
|
|
|
# configurePhase
|
|
|
|
|
# buildPhase
|
|
|
|
|
# checkPhase
|
|
|
|
|
# installPhase
|
|
|
|
|
# fixupPhase
|
|
|
|
|
# installCheckPhase
|
|
|
|
|
# distPhase
|
|
|
|
|
{
|
|
|
|
|
lib,
|
|
|
|
|
stdenv,
|
2026-04-18 19:20:16 -04:00
|
|
|
fetchFromGitHub,
|
2025-12-20 23:13:51 -05:00
|
|
|
writeShellScript,
|
|
|
|
|
k8s,
|
|
|
|
|
...
|
|
|
|
|
}:
|
|
|
|
|
let
|
|
|
|
|
bootstrap_script = (writeShellScript "bootstrap-script" bootstrap_script_body);
|
|
|
|
|
bootstrap_script_body = (''
|
|
|
|
|
set -euo pipefail
|
|
|
|
|
IFS=$'\n\t'
|
|
|
|
|
DIR="$( cd "$( dirname "''${BASH_SOURCE[0]}" )" && pwd )"
|
|
|
|
|
|
|
|
|
|
${apply_manifests}
|
|
|
|
|
echo "Bootstrap finished"
|
|
|
|
|
'');
|
|
|
|
|
manifests = (
|
2025-12-21 22:41:21 -05:00
|
|
|
lib.concatMapStringsSep "," lib.escapeShellArg (
|
|
|
|
|
[
|
|
|
|
|
./files/manifests/initial_clusterrole.yaml
|
2026-01-04 22:27:00 -05:00
|
|
|
]
|
|
|
|
|
++ gateway_crds
|
|
|
|
|
++ [
|
2025-12-29 19:11:55 -05:00
|
|
|
"${k8s.cilium-manifest}/cilium.yaml"
|
2025-12-29 21:19:50 -05:00
|
|
|
"${k8s.coredns-manifest}/coredns.yaml"
|
2025-12-21 22:41:21 -05:00
|
|
|
./files/manifests/flux_namespace.yaml
|
|
|
|
|
./files/manifests/flux.yaml
|
|
|
|
|
./files/manifests/flux_instance.yaml
|
|
|
|
|
]
|
|
|
|
|
++ (lib.attrsets.mapAttrsToList (
|
|
|
|
|
secret_name: secret_value: "${secret_value}/${secret_name}.yaml"
|
|
|
|
|
) k8s.k8s-secrets-generic)
|
2025-12-21 23:26:15 -05:00
|
|
|
++ [
|
|
|
|
|
./files/manifests/flux_apply_git.yaml
|
|
|
|
|
]
|
2025-12-21 22:41:21 -05:00
|
|
|
)
|
2025-12-20 23:13:51 -05:00
|
|
|
);
|
|
|
|
|
apply_manifests = "kubectl --kubeconfig=${k8s.client-configs.admin}/admin.kubeconfig apply --server-side --force-conflicts -f ${manifests}";
|
2026-04-18 19:20:16 -04:00
|
|
|
gateway_crds_repo = fetchFromGitHub {
|
|
|
|
|
owner = "kubernetes-sigs";
|
|
|
|
|
repo = "gateway-api";
|
|
|
|
|
rev = "v1.4.1";
|
|
|
|
|
sha256 = "sha256-/GHyikcC2QGDN0ndpY6/xvSEEnpSsLrNU+lFElCKBs8=";
|
|
|
|
|
};
|
2026-01-04 22:27:00 -05:00
|
|
|
gateway_crds = [
|
2026-04-18 19:20:16 -04:00
|
|
|
"${gateway_crds_repo}/config/crd/experimental/gateway.networking.k8s.io_backendtlspolicies.yaml"
|
|
|
|
|
"${gateway_crds_repo}/config/crd/experimental/gateway.networking.k8s.io_referencegrants.yaml"
|
|
|
|
|
"${gateway_crds_repo}/config/crd/experimental/gateway.networking.x-k8s.io_xmeshes.yaml"
|
|
|
|
|
"${gateway_crds_repo}/config/crd/experimental/gateway.networking.k8s.io_gatewayclasses.yaml"
|
|
|
|
|
"${gateway_crds_repo}/config/crd/experimental/gateway.networking.k8s.io_udproutes.yaml"
|
|
|
|
|
"${gateway_crds_repo}/config/crd/experimental/gateway.networking.k8s.io_tlsroutes.yaml"
|
|
|
|
|
"${gateway_crds_repo}/config/crd/experimental/gateway.networking.x-k8s.io_xbackendtrafficpolicies.yaml"
|
|
|
|
|
"${gateway_crds_repo}/config/crd/experimental/gateway.networking.k8s.io_gateways.yaml"
|
|
|
|
|
"${gateway_crds_repo}/config/crd/experimental/gateway.networking.x-k8s.io_xlistenersets.yaml"
|
|
|
|
|
"${gateway_crds_repo}/config/crd/experimental/gateway.networking.k8s.io_tcproutes.yaml"
|
|
|
|
|
"${gateway_crds_repo}/config/crd/experimental/gateway.networking.k8s.io_httproutes.yaml"
|
|
|
|
|
"${gateway_crds_repo}/config/crd/experimental/gateway.networking.k8s.io_grpcroutes.yaml"
|
2026-01-04 22:27:00 -05:00
|
|
|
];
|
2025-12-20 23:13:51 -05:00
|
|
|
in
|
|
|
|
|
stdenv.mkDerivation (finalAttrs: {
|
|
|
|
|
name = "bootstrap-script";
|
|
|
|
|
nativeBuildInputs = [ ];
|
|
|
|
|
buildInputs = [ ];
|
|
|
|
|
|
|
|
|
|
unpackPhase = "true";
|
|
|
|
|
|
|
|
|
|
installPhase = ''
|
|
|
|
|
cp ${bootstrap_script} "$out"
|
|
|
|
|
'';
|
|
|
|
|
})
|
