prep vault-0.hades

nixos/hosts/hades/default.nix

@@ -29,6 +29,11 @@
     mac = "00:0c:29:a1:4e:28";
     nix = false;
   }
+  {
+    hostname = "vault-0";
+    ip = "192.168.0.103";
+    mac = "7A:14:15:ED:D1:E6";
+  }
   {
     hostname = "MariaDB";
     ip = "192.168.0.109";

nixos/hosts/hades/vault-0/configuration.nix

@@ -0,0 +1,49 @@
+# Edit this configuration file to define what should be installed on
+# your system.  Help is available in the configuration.nix(5) man page
+# and in the NixOS manual (accessible by running ‘nixos-help’).
+
+{ config, pkgs, hosts, ... }:
+let 
+  port = 8200;
+  clusterPort = 8201;
+in {
+  # This value determines the NixOS release from which the default
+  # settings for stateful data, like file locations and database versions
+  # on your system were taken. It‘s perfectly fine and recommended to leave
+  # this value at the release version of the first install of this system.
+  # Before changing this value read the documentation for this option
+  # (e.g. man configuration.nix or on https://nixos.org/nixos/options.html).
+  system.stateVersion = "21.05"; # Did you read the comment?
+
+  # Additional packages
+  environment.systemPackages = with pkgs; [ ];
+
+  # Vault
+  networking.firewall.allowedTCPPorts = [ port clusterPort ];
+
+  services.vault = {
+    enable = true;
+    # bin version includes the UI
+    package = pkgs.vault-bin;
+    address = "0.0.0.0:${toString port}";
+    storageBackend = "raft";
+    storagePath = "/var/lib/vault-raft";
+    storageConfig = ''
+      node_id = "hades-1"
+
+      retry_join {
+        leader_api_addr = "http://10.42.42.30:${toString port}"
+      }
+
+      retry_join {
+        leader_api_addr = "http://10.42.42.6:${toString port}"
+      }
+    '';
+    extraConfig = ''
+      ui = true
+      disable_mlock = true
+      api_addr = "http://192.168.0.103:${toString port}"
+      cluster_addr = "http://192.168.0.103:${toString clusterPort}"
+    '';
+  };
+}

nixos/hosts/olympus/vault-0/configuration.nix

@@ -30,6 +30,10 @@ in {
     storagePath = "/var/lib/vault-raft";
     storageConfig = ''
       node_id = "olympus-1"
+
+      retry_join {
+        leader_api_addr = "http://10.42.42.30:${toString port}"
+      }
     '';
     extraConfig = ''
       ui = true

nixos/hosts/thalassa/null/home/default.nix

@@ -2,12 +2,7 @@
 let
   tex = (pkgs.texlive.combine {
     inherit (pkgs.texlive) scheme-full;
-    dnd-5e-latex-template = {
-      pkgs = [
-        pkgs.v.dnd-5e-latex-template
-        pkgs.v.dnd-5e-latex-character-sheet-template
-      ];
-    };
+    dnd-5e-latex-template = { pkgs = [ pkgs.v.dnd-5e-latex-template ]; };
   });
 in {
   programs.home-manager.enable = true;

nixos/pkgs/default.nix

@@ -14,7 +14,6 @@ final: prev: {
     };
 
     dnd-5e-latex-template = prev.callPackage ./dnd-5e-latex-template { };
-    dnd-5e-latex-character-sheet-template = prev.callPackage ./dnd-5e-latex-character-sheet-template { };
 
     gitea-agatheme = prev.callPackage ./gitea-agatheme { };
   };

nixos/pkgs/dnd-5e-latex-character-sheet-template/default.nix

@@ -1,28 +0,0 @@
-{ lib, stdenvNoCC, fetchFromGitHub }: stdenvNoCC.mkDerivation rec {
-  pname = "dnd-5e-latex-character-sheet-template";
-  version = "0.1.0";
-  tlType = "run";
-
-  src = fetchFromGitHub {
-    owner = "matsavage";
-    repo = "DND-5e-LaTeX-Character-Sheet-Template";
-    rev = "d9ab382c7c9da4680a99355cb99510a318f159e3";
-    sha256 = lib.fakeSha256;
-  };
-
-  phases = [ "installPhase" ];
-
-  installPhase = ''
-      runHook preInstall
-
-      path="$out/tex/latex/${pname}"
-      mkdir -p "$path"
-      cp -r $src/* $path
-
-      runHook postInstall
-  '';
-
-  meta = {
-    description = "DnD 5e latex character template";
-  };
-}