update caddy hash

flake.lock: Update
Flake lock file updates: • Updated input 'garage': 'github:deuxfleurs-org/garage/14d2f2b18da015508d4a1e31b2f014da5188d516' (2025-03-21) → 'github:deuxfleurs-org/garage/4ef954d17604eba8aafa52902cd3c573978c7195' (2025-04-19) • Updated input 'home-manager': 'github:nix-community/home-manager/c6b75d69b6994ba68ec281bd36faebcc56097800' (2025-04-16) → 'github:nix-community/home-manager/f98314bb064cf8f8446c44afbadaaad2505875a7' (2025-04-20) • Updated input 'nix-index-database': 'github:nix-community/nix-index-database/4fc9ea78c962904f4ea11046f3db37c62e8a02fd' (2025-04-13) → 'github:nix-community/nix-index-database/69716041f881a2af935021c1182ed5b0cc04d40e' (2025-04-20) • Updated input 'nixpkgs': 'github:nixos/nixpkgs/2631b0b7abcea6e640ce31cd78ea58910d31e650' (2025-04-12) → 'github:nixos/nixpkgs/b024ced1aac25639f8ca8fdfc2f8c4fbd66c48ef' (2025-04-17) • Updated input 'rust-overlay': 'github:oxalica/rust-overlay/c564fb830c7d5b3e4fde5ea829a62f0e41e43a20' (2025-04-16) → 'github:oxalica/rust-overlay/e2142ef330a61c02f274ac9a9cb6f8487a5d0080' (2025-04-20) • Updated input 'vscode-extensions': 'github:nix-community/nix-vscode-extensions/47bd3dc652c4a02dc565a9360fe828af38bea287' (2025-04-16) → 'github:nix-community/nix-vscode-extensions/ff14820202442f847fd37862eb48a7cb254a19d3' (2025-04-20)
2025-04-20 02:36:48 -04:00 · 2025-04-20 02:28:52 -04:00 · 2025-04-20 02:26:56 -04:00 · 2025-04-20 02:23:19 -04:00 · 2025-04-20 02:19:42 -04:00 · 2025-04-20 01:39:56 -04:00
8 changed files with 78 additions and 64 deletions
--- a/.github/workflows/build-machines-and-homes.yml
+++ b/.github/workflows/build-machines-and-homes.yml
@ -39,6 +39,25 @@ jobs:
      - name: setup binary cache key
        run: echo -n "${{ secrets.NIX_CACHE_SECRET_KEY }}" | xxd -p -r > ${{ runner.temp }}/cache-priv-key.pem
      - name: Sync repository
        uses: actions/checkout@v4
        with:
          persist-credentials: false
      - name: post-build-hook
        run: |
          sudo mkdir -p /etc/nix
          sudo cp ci/upload-to-cache.sh /etc/nix/
          sudo chmod +x /etc/nix/upload-to-cache.sh
      - name: setup s3 credentials
        run: |
          sudo mkdir /root/.aws
          echo "[default]" |sudo tee /root/.aws/config |sudo tee /root/.aws/credentials
          echo "aws_access_key_id=$AWS_ACCESS_KEY_ID" |sudo tee -a /root/.aws/credentials
          echo "aws_secret_access_key=$AWS_SECRET_ACCESS_KEY" |sudo tee -a /root/.aws/credentials
          echo "endpoint_url=$AWS_ENDPOINT_URL" |sudo tee -a /root/.aws/config
      - name: Install Nix
        uses: cachix/install-nix-action@v30
        with:
@ -51,30 +70,12 @@ jobs:
            secret-key-files = ${{ runner.temp }}/cache-priv-key.pem
            extra-substituters = https://nixcache.cy7.sh
            extra-trusted-public-keys = nixcache.cy7.sh:DN3d1dt0wnXfTH03oVmTee4KgmdNdB0NY3SuzA8Fwx8=
-
+            post-build-hook = /etc/nix/upload-to-cache.sh
      - name: Sync repository
        uses: actions/checkout@v4
        with:
          persist-credentials: false
      - name: build
        run: |
          # package=".#nixosConfigurations."${{ matrix.machine }}".config.system.build.toplevel"
          # nix build -L "$package"
          nix run nixpkgs#nixos-rebuild build -- -L --flake ".#${{ matrix.machine }}"
      - name: cache
        # https://stackoverflow.com/a/58859404
        if: '!cancelled()'
        run: |
          package=".#nixosConfigurations."${{ matrix.machine }}".config.system.build.toplevel"
          nix run github:cything/nixcp/2025-04-12 -- \
            push \
            --bucket nixcache \
            --signing-key ${{ runner.temp }}/cache-priv-key.pem \
            -u https://nix-community.cachix.org \
            $package
  build-homes:
    strategy:
      fail-fast: false
@ -103,6 +104,25 @@ jobs:
      - name: setup binary cache key
        run: echo -n "${{ secrets.NIX_CACHE_SECRET_KEY }}" | xxd -p -r > ${{ runner.temp }}/cache-priv-key.pem
      - name: Sync repository
        uses: actions/checkout@v4
        with:
          persist-credentials: false
      - name: post-build-hook
        run: |
          sudo mkdir -p /etc/nix
          sudo cp ci/upload-to-cache.sh /etc/nix/
          sudo chmod +x /etc/nix/upload-to-cache.sh
      - name: setup s3 credentials
        run: |
          sudo mkdir /root/.aws
          echo "[default]" |sudo tee /root/.aws/config |sudo tee /root/.aws/credentials
          echo "aws_access_key_id=$AWS_ACCESS_KEY_ID" |sudo tee -a /root/.aws/credentials
          echo "aws_secret_access_key=$AWS_SECRET_ACCESS_KEY" |sudo tee -a /root/.aws/credentials
          echo "endpoint_url=$AWS_ENDPOINT_URL" |sudo tee -a /root/.aws/config
      - name: Install Nix
        uses: cachix/install-nix-action@v30
        with:
@ -115,25 +135,9 @@ jobs:
            secret-key-files = ${{ runner.temp }}/cache-priv-key.pem
            extra-substituters = https://nixcache.cy7.sh
            extra-trusted-public-keys = nixcache.cy7.sh:DN3d1dt0wnXfTH03oVmTee4KgmdNdB0NY3SuzA8Fwx8=
-
+            post-build-hook = /etc/nix/upload-to-cache.sh
      - name: Sync repository
        uses: actions/checkout@v4
        with:
          persist-credentials: false
      - name: build
        run: |
          package=".#homeConfigurations."${{ matrix.home }}".activationPackage"
          nix build -L "$package"
      - name: cache
        # https://stackoverflow.com/a/58859404
        if: '!cancelled()'
        run: |
          package=".#homeConfigurations."${{ matrix.home }}".activationPackage"
          nix run github:cything/nixcp/2025-04-12 -- \
            push \
            --bucket nixcache \
            --signing-key ${{ runner.temp }}/cache-priv-key.pem \
            -u https://nix-community.cachix.org \
            $package
--- a/.github/workflows/build-packages.yml
+++ b/.github/workflows/build-packages.yml
@ -51,7 +51,7 @@ jobs:
        # https://stackoverflow.com/a/58859404
        if: '!cancelled()'
        run: |
-          nix run github:cything/nixcp/2025-04-12 -- \
+          nix run github:cything/nixcp -- \
            push \
            --bucket nixcache \
            --signing-key ${{ runner.temp }}/cache-priv-key.pem \
--- a/ci/upload-to-cache.sh
+++ b/ci/upload-to-cache.sh
@ -0,0 +1,8 @@
 #!/bin/sh
 # https://nix.dev/guides/recipes/post-build-hook.html#implementing-the-build-hook
 set -eu
 set -f # disable globbing
 export IFS=' '
 echo "Uploading paths" $OUT_PATHS
 exec /nix/var/nix/profiles/default/bin/nix copy --to "s3://nixcache?endpoint=s3.cy7.sh&compression=zstd&parallel-compression=true" $OUT_PATHS
--- a/flake.lock
+++ b/flake.lock
@ -147,11 +147,11 @@
        "rust-overlay": "rust-overlay"
      },
      "locked": {
-        "lastModified": 1742547966,
+        "lastModified": 1745093116,
-        "narHash": "sha256-AJfw+XRaRyrlpb9Wy6rVz44JePy0AXWPECXVPBnrOfI=",
+        "narHash": "sha256-38L/NZyfGSGff9f+FfRd4teA1Xj93hqcBJcqhxbLA7Y=",
        "owner": "deuxfleurs-org",
        "repo": "garage",
-        "rev": "14d2f2b18da015508d4a1e31b2f014da5188d516",
+        "rev": "4ef954d17604eba8aafa52902cd3c573978c7195",
        "type": "github"
      },
      "original": {
@ -189,11 +189,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1743948087,
+        "lastModified": 1745128386,
-        "narHash": "sha256-B6cIi2ScgVSROPPlTti6len+TdR0K25B9R3oKvbw3M8=",
+        "narHash": "sha256-xnNxL9lZC5Ez8AxTgHZZu8pYSNM34+5GD5jGSs8Vq4M=",
        "owner": "nix-community",
        "repo": "home-manager",
-        "rev": "ef3b2a6b602c3f1a80c6897d6de3ee62339a3eb7",
+        "rev": "f98314bb064cf8f8446c44afbadaaad2505875a7",
        "type": "github"
      },
      "original": {
@ -257,11 +257,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1743911143,
+        "lastModified": 1745120797,
-        "narHash": "sha256-4j4JPwr0TXHH4ZyorXN5yIcmqIQr0WYacsuPA4ktONo=",
+        "narHash": "sha256-owQ0VQ+7cSanTVPxaZMWEzI22Q4bGnuvhVjLAJBNQ3E=",
        "owner": "nix-community",
        "repo": "nix-index-database",
-        "rev": "a36f6a7148aec2c77d78e4466215cceb2f5f4bfb",
+        "rev": "69716041f881a2af935021c1182ed5b0cc04d40e",
        "type": "github"
      },
      "original": {
@ -277,11 +277,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1743410259,
+        "lastModified": 1744621833,
-        "narHash": "sha256-tjdkPPkRT1Mj72yrpN8oUxYw9SaG8wOQWD3auS1bvSs=",
+        "narHash": "sha256-II6a32kRc+KbLhU/jS8EbuXYt1PNCvsRvuBw2becgQM=",
        "owner": "nix-community",
        "repo": "nix-ld",
-        "rev": "140451db1cadeef1e7e9e054332b67b7be808916",
+        "rev": "9a3812797e25def1d4aed62b517606b7b93989dc",
        "type": "github"
      },
      "original": {
@ -292,11 +292,11 @@
    },
    "nixpkgs": {
      "locked": {
-        "lastModified": 1744463964,
+        "lastModified": 1744932701,
-        "narHash": "sha256-LWqduOgLHCFxiTNYi3Uj5Lgz0SR+Xhw3kr/3Xd0GPTM=",
+        "narHash": "sha256-fusHbZCyv126cyArUwwKrLdCkgVAIaa/fQJYFlCEqiU=",
        "owner": "nixos",
        "repo": "nixpkgs",
-        "rev": "2631b0b7abcea6e640ce31cd78ea58910d31e650",
+        "rev": "b024ced1aac25639f8ca8fdfc2f8c4fbd66c48ef",
        "type": "github"
      },
      "original": {
@ -417,11 +417,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1743906877,
+        "lastModified": 1745116541,
-        "narHash": "sha256-Thah1oU8Vy0gs9bh5QhNcQh1iuQiowMnZPbrkURonZA=",
+        "narHash": "sha256-5xzA6dTfqCfTTDCo3ipPZzrg3wp01xmcr73y4cTNMP8=",
        "owner": "oxalica",
        "repo": "rust-overlay",
-        "rev": "9d00c6b69408dd40d067603012938d9fbe95cfcd",
+        "rev": "e2142ef330a61c02f274ac9a9cb6f8487a5d0080",
        "type": "github"
      },
      "original": {
@ -437,11 +437,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1743910657,
+        "lastModified": 1744669848,
-        "narHash": "sha256-zr2jmWeWyhCD8WmO2aWov2g0WPPuZfcJDKzMJZYGq3Y=",
+        "narHash": "sha256-pXyanHLUzLNd3MX9vsWG+6Z2hTU8niyphWstYEP3/GU=",
        "owner": "Mic92",
        "repo": "sops-nix",
-        "rev": "523f58a4faff6c67f5f685bed33a7721e984c304",
+        "rev": "61154300d945f0b147b30d24ddcafa159148026a",
        "type": "github"
      },
      "original": {
@ -498,17 +498,16 @@
    "vscode-extensions": {
      "inputs": {
        "flake-utils": "flake-utils_3",
        "nixpkgs": [
          "nixpkgs"
        ]
      },
      "locked": {
-        "lastModified": 1743904774,
+        "lastModified": 1745114521,
-        "narHash": "sha256-dHnwYLz1b6ohGP2DjWKpDFEZ9WOm4vYuPXKUna08awU=",
+        "narHash": "sha256-P/TgmeavrpUiHCejjjsU2vOMB7cBIcHltGDSKKgi20E=",
        "owner": "nix-community",
        "repo": "nix-vscode-extensions",
-        "rev": "da51d4cab526bef885e8c95ab2b9455bfe0940d4",
+        "rev": "ff14820202442f847fd37862eb48a7cb254a19d3",
        "type": "github"
      },
      "original": {
--- a/home/kitty.nix
+++ b/home/kitty.nix
@ -7,7 +7,6 @@
      package = pkgs.ibm-plex;
      size = 12;
    };
    themeFile = "GitHub_Dark";
    settings = {
      enable_audio_bell = true;
      # how many windows should be open before kitty asks
--- a/home/yt/ytnix.nix
+++ b/home/yt/ytnix.nix
@ -104,6 +104,7 @@
      rust-analyzer
      minio-client
      nil
      keepassxc
    ];
  home.sessionVariables = {
@ -161,4 +162,6 @@
    enable = true;
    addKeysToAgent = "yes";
  };
  programs.firefox.enable = true;
 }
--- a/hosts/common.nix
+++ b/hosts/common.nix
@ -1,6 +1,7 @@
 { inputs, config, pkgs, ... }:
 {
  nix = {
    package = pkgs.lix;
    settings = {
      experimental-features = "nix-command flakes";
      auto-optimise-store = true;
--- a/modules/caddy.nix
+++ b/modules/caddy.nix
@ -21,7 +21,7 @@ in
          # (still need the @ to pass nix config check)
          "github.com/caddy-dns/cloudflare@v0.0.0-20250228175314-1fb64108d4de"
        ];
-        hash = "sha256-YYpsf8HMONR1teMiSymo2y+HrKoxuJMKIea5/NEykGc=";
+        hash = "sha256-pfh9DXUj35jlAntkWc4D5wuW04xxQfM1rZ4KFauMzvc=";
      };
      logFormat = lib.mkForce "level INFO";
      acmeCA = "https://acme-v02.api.letsencrypt.org/directory";
Author	SHA1	Message	Date
cy	a7de77a0fc	update caddy hash	2025-04-20 02:36:48 -04:00
cy	1b298adbf6	flake.lock: Update Flake lock file updates: • Updated input 'garage': 'github:deuxfleurs-org/garage/14d2f2b18da015508d4a1e31b2f014da5188d516' (2025-03-21) → 'github:deuxfleurs-org/garage/4ef954d17604eba8aafa52902cd3c573978c7195' (2025-04-19) • Updated input 'home-manager': 'github:nix-community/home-manager/c6b75d69b6994ba68ec281bd36faebcc56097800' (2025-04-16) → 'github:nix-community/home-manager/f98314bb064cf8f8446c44afbadaaad2505875a7' (2025-04-20) • Updated input 'nix-index-database': 'github:nix-community/nix-index-database/4fc9ea78c962904f4ea11046f3db37c62e8a02fd' (2025-04-13) → 'github:nix-community/nix-index-database/69716041f881a2af935021c1182ed5b0cc04d40e' (2025-04-20) • Updated input 'nixpkgs': 'github:nixos/nixpkgs/2631b0b7abcea6e640ce31cd78ea58910d31e650' (2025-04-12) → 'github:nixos/nixpkgs/b024ced1aac25639f8ca8fdfc2f8c4fbd66c48ef' (2025-04-17) • Updated input 'rust-overlay': 'github:oxalica/rust-overlay/c564fb830c7d5b3e4fde5ea829a62f0e41e43a20' (2025-04-16) → 'github:oxalica/rust-overlay/e2142ef330a61c02f274ac9a9cb6f8487a5d0080' (2025-04-20) • Updated input 'vscode-extensions': 'github:nix-community/nix-vscode-extensions/47bd3dc652c4a02dc565a9360fe828af38bea287' (2025-04-16) → 'github:nix-community/nix-vscode-extensions/ff14820202442f847fd37862eb48a7cb254a19d3' (2025-04-20)	2025-04-20 02:28:52 -04:00
cy	1cf31a7ae0	ci use parallel compression	2025-04-20 02:26:56 -04:00
cy	f3f15724d2	ci use zstd to compress cache	2025-04-20 02:23:19 -04:00
cy	4f1bd26064	setup aws profile for s3 auth	2025-04-20 02:19:42 -04:00
cy	e38ed0e6f1	fix nix copy dest	2025-04-20 01:39:56 -04:00
cy	5a053b2379	fix nix path	2025-04-20 01:36:23 -04:00
cy	eb054c444a	temp disable maximize disk space	2025-04-20 01:35:16 -04:00
cy	2591401aa3	workflow: debug	2025-04-20 01:33:55 -04:00
cy	c193ba2108	workflow: test post-build hook	2025-04-20 01:27:05 -04:00
cy	140f0f5dcf	kitty: use default theme	2025-04-20 01:18:41 -04:00
cy	4188e4aa83	Merge branch 'update'	2025-04-17 15:19:39 -04:00
cy	44a98fd703	ytnix: enable firefox	2025-04-17 15:19:29 -04:00
cy	f5af830c30	flake.lock: Update Flake lock file updates: • Updated input 'home-manager': 'github:nix-community/home-manager/ef3b2a6b602c3f1a80c6897d6de3ee62339a3eb7' (2025-04-06) → 'github:nix-community/home-manager/c6b75d69b6994ba68ec281bd36faebcc56097800' (2025-04-16) • Updated input 'nix-index-database': 'github:nix-community/nix-index-database/a36f6a7148aec2c77d78e4466215cceb2f5f4bfb' (2025-04-06) → 'github:nix-community/nix-index-database/4fc9ea78c962904f4ea11046f3db37c62e8a02fd' (2025-04-13) • Updated input 'nix-ld': 'github:nix-community/nix-ld/140451db1cadeef1e7e9e054332b67b7be808916' (2025-03-31) → 'github:nix-community/nix-ld/9a3812797e25def1d4aed62b517606b7b93989dc' (2025-04-14) • Updated input 'rust-overlay': 'github:oxalica/rust-overlay/9d00c6b69408dd40d067603012938d9fbe95cfcd' (2025-04-06) → 'github:oxalica/rust-overlay/c564fb830c7d5b3e4fde5ea829a62f0e41e43a20' (2025-04-16) • Updated input 'sops-nix': 'github:Mic92/sops-nix/523f58a4faff6c67f5f685bed33a7721e984c304' (2025-04-06) → 'github:Mic92/sops-nix/61154300d945f0b147b30d24ddcafa159148026a' (2025-04-14) • Updated input 'vscode-extensions': 'github:nix-community/nix-vscode-extensions/da51d4cab526bef885e8c95ab2b9455bfe0940d4' (2025-04-06) → 'github:nix-community/nix-vscode-extensions/47bd3dc652c4a02dc565a9360fe828af38bea287' (2025-04-16)	2025-04-16 21:38:04 -04:00
cy	b3f1d10575	install keepassxc	2025-04-16 21:37:57 -04:00
cy	61a4f97684	use lix from nixpkgs	2025-04-16 21:37:51 -04:00
cy	71657e0ccb	use nixcp main	2025-04-15 20:19:08 -04:00