hosting/selfhostblocks
1
0
Fork 0
Code Issues Activity

add documentation about tests and workflow

Browse source
This commit is contained in:
ibizaman 2023-03-16 23:47:54 -07:00
parent b6288d3592
commit 33597929c3
1 changed files with 49 additions and 12 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

61
README.md
View file

@ -81,10 +81,51 @@ Some other "dev" oriented TODOs can be found at the end of the README.
WIP WIP
## Deploy to staging environment - Virtualbox ## Advised Workflow
The workflow is the following:
1. Make a change
2. Add or modify tests
3. Run the tests
4. Deploy to staging environment
5. Deploy to production environment
The first two bullets are very general so I can't realistically
enumerate all possibilities. I'll possibly provide examples later.
The remaining three are explained in the following subsections.
### Run the tests
For unit tests, do:
```bash
nix-instantiate --eval --strict . -A tests.unit
```
If all tests pass, you'll see the following output:
```
{ }
```
Otherwise, you'll see one attribute for each failing test. For example, you can dig into the first failing haproxy test with:
```
nix-instantiate --eval --strict . -A tests.unit.haproxy.0
```
To run integration tests, do:
```bash
nix-build -A tests.unit.all
```
### Deploy to staging environment
Instead of deploying to prod machines, you'll deploy to VMs running on Instead of deploying to prod machines, you'll deploy to VMs running on
your computer. This is tremendously helpful for testing. your computer with Virtualbox. This is tremendously helpful for
testing.
```bash ```bash
export NIXOPS_DEPLOYMENT=vboxtest export NIXOPS_DEPLOYMENT=vboxtest
@ -108,16 +149,16 @@ Rebooting after deploying is anyway needed for systemd to pickup the
environment variable. environment variable.
The `extra-builtins-file` allows us to use password store as the The `extra-builtins-file` allows us to use password store as the
secrets manager. You'll probably see a errors about missing passwords secrets manager. You'll probably see errors about missing passwords
when running this for the first time. To fix those, generate the when running this for the first time. To fix those, generate the
password with `pass`. password with `pass`.
### Handle host reboot #### Handle host reboot
After restarting the computer running the VMs, do `nixops start` and After restarting the computer running the VMs, do `nixops start` and
continue from the `nixops deploy ...` step. continue from the `nixops deploy ...` step.
### Cleanup #### Cleanup
To start from scratch, run `nixops destroy` and start at the `nixops To start from scratch, run `nixops destroy` and start at the `nixops
deploy ...` step. This can be useful after fiddling with creating deploy ...` step. This can be useful after fiddling with creating
@ -129,13 +170,7 @@ Also, you'll need to add the `--no-upgrade` option when running
deactivate services but since the machine is clean, it will fail to deactivate services but since the machine is clean, it will fail to
deactivate the services. deactivate the services.
## Run tests ### Deploy to prod
```bash
nix-instantiate --eval --strict . -A runtests
```
## Deploy to prod
```bash ```bash
export NIXOPS_DEPLOYMENT=prod export NIXOPS_DEPLOYMENT=prod
@ -276,3 +311,5 @@ In rough order of highest to lowest priority.
- [ ] Go through https://xeiaso.net/blog/paranoid-nixos-2021-07-18 and - [ ] Go through https://xeiaso.net/blog/paranoid-nixos-2021-07-18 and
https://nixos.wiki/wiki/Security https://nixos.wiki/wiki/Security
- [ ] Move a few packages installed through network.nix into services.nix. - [ ] Move a few packages installed through network.nix into services.nix.
- [ ] Use something else than `pass` to retrieve secrets. Or better,
allow multiple options.