aa122cbae7
This CL can be used to compare the style of nixpkgs-fmt against other formatters (nixpkgs, alejandra). Change-Id: I87c6abff6bcb546b02ead15ad0405f81e01b6d9e Reviewed-on: https://cl.tvl.fyi/c/depot/+/4397 Tested-by: BuildkiteCI Reviewed-by: sterni <sternenseemann@systemli.org> Reviewed-by: lukegb <lukegb@tvl.fyi> Reviewed-by: wpcarro <wpcarro@gmail.com> Reviewed-by: Profpatsch <mail@profpatsch.de> Reviewed-by: kanepyork <rikingcoding@gmail.com> Reviewed-by: tazjin <tazjin@tvl.su> Reviewed-by: cynthia <cynthia@tvl.fyi> Reviewed-by: edef <edef@edef.eu> Reviewed-by: eta <tvl@eta.st> Reviewed-by: grfn <grfn@gws.fyi>
31 lines
700 B
Nix
31 lines
700 B
Nix
# This file defines a Nix helper function to create Tailscale ACL files.
|
|
#
|
|
# https://tailscale.com/kb/1018/install-acls
|
|
|
|
{ depot, pkgs, ... }:
|
|
|
|
with depot.nix.yants;
|
|
|
|
let
|
|
inherit (builtins) toFile toJSON;
|
|
|
|
acl = struct "acl" {
|
|
Action = enum [ "accept" "reject" ];
|
|
Users = list string;
|
|
Ports = list string;
|
|
};
|
|
|
|
acls = list entry;
|
|
|
|
aclConfig = struct "aclConfig" {
|
|
# Static group mappings from group names to lists of users
|
|
Groups = option (attrs (list string));
|
|
|
|
# Hostname aliases to use in place of IPs
|
|
Hosts = option (attrs string);
|
|
|
|
# Actual ACL entries
|
|
ACLs = list acl;
|
|
};
|
|
in
|
|
config: pkgs.writeText "tailscale-acl.json" (toJSON (aclConfig config))
|