flake.nix: Avoid path concatenation in imports mapping

scripts: Refactor following tests' example
tests: Refactor parts module
2026-03-22 23:29:08 +01:00 · 2026-02-14 23:57:00 +01:00 · 2026-02-14 23:54:13 +01:00 · 2026-02-14 23:53:12 +01:00 · 2026-02-14 23:47:32 +01:00
8 changed files with 39 additions and 54 deletions
--- a/flake-parts/scripts.nix
+++ b/flake-parts/scripts.nix
@ -7,19 +7,19 @@
      lib,
      ...
    }:
    let
      mkScript = file: rec {
        name =
          file
          |> lib.unsafeDiscardStringContext
          |> lib.removePrefix "${self}/scripts/"
          |> lib.removeSuffix ".nix"
          |> lib.replaceString "/" "-";
        value = pkgs.writeShellApplication ({ inherit name; } // import file { inherit self' pkgs lib; });
      };
    in
    {
      packages =
-        "${self}/scripts"
+        "${self}/scripts" |> lib.filesystem.listFilesRecursive |> lib.map mkScript |> lib.listToAttrs;
        |> lib.filesystem.listFilesRecursive
        |> lib.map (file: {
          name =
            file
            |> lib.unsafeDiscardStringContext
            |> lib.removePrefix "${self}/scripts/"
            |> lib.removeSuffix ".nix"
            |> lib.replaceString "/" "-";
          value = import file { inherit self' pkgs lib; };
        })
        |> lib.listToAttrs;
    };
 }
--- a/flake-parts/tests.nix
+++ b/flake-parts/tests.nix
@ -2,27 +2,25 @@
 {
  perSystem =
    { pkgs, lib, ... }:
    let
      mkTest = dir: rec {
        name = "${dir}-test";
        value = pkgs.testers.runNixOSTest (
          {
            inherit name;
          }
          // import "${self}/tests/${dir}" {
            inherit
              inputs
              self
              pkgs
              lib
              ;
          }
        );
      };
    in
    {
-      checks =
+      checks = "${self}/tests" |> builtins.readDir |> lib.attrNames |> lib.map mkTest |> lib.listToAttrs;
        "${self}/tests"
        |> builtins.readDir
        |> lib.attrNames
        |> lib.map (name: {
          name = "${name}-test";
          value = pkgs.testers.runNixOSTest (
            {
              name = "${name}-test";
            }
            // import "${self}/tests/${name}" {
              inherit
                inputs
                self
                pkgs
                lib
                ;
            }
          );
        })
        |> lib.listToAttrs;
    };
 }
--- a/flake.nix
+++ b/flake.nix
@ -70,6 +70,6 @@
        ./flake-parts
        |> builtins.readDir
        |> builtins.attrNames
-        |> builtins.map (name: ./flake-parts + "/${name}");
+        |> builtins.map (name: ./flake-parts/${name});
    };
 }
--- a/modules/system/networking/overlay.nix
+++ b/modules/system/networking/overlay.nix
@ -11,7 +11,7 @@ in
  options.custom.networking.overlay = {
    networkCidr = lib.mkOption {
      type = lib.types.nonEmptyStr;
-      default = "";
+      default = "10.254.250.0/24";
    };
    networkAddress = lib.mkOption {
      type = lib.types.nonEmptyStr;
@ -25,7 +25,7 @@ in
    };
    domain = lib.mkOption {
      type = lib.types.nonEmptyStr;
-      default = "";
+      default = "splitleaf.de";
    };
    fqdn = lib.mkOption {
      type = lib.types.nonEmptyStr;
@ -43,11 +43,11 @@ in
    };
    interface = lib.mkOption {
      type = lib.types.nonEmptyStr;
-      default = "";
+      default = "nebula";
    };
    systemdUnit = lib.mkOption {
      type = lib.types.nonEmptyStr;
-      default = "";
+      default = "nebula@mesh.service";
    };
    isLighthouse = lib.mkEnableOption "";
--- a/modules/system/services/nebula/default.nix
+++ b/modules/system/services/nebula/default.nix
@ -51,13 +51,6 @@ in
      message = "`${netCfg.hostName}` is a Nebula lighthouse, but `underlay.isPublic` is not set. Lighthouses must be publicly reachable.";
    };
    custom.networking.overlay = {
      networkCidr = "10.254.250.0/24";
      domain = "splitleaf.de";
      interface = "nebula";
      systemdUnit = "nebula@mesh.service";
    };
    sops.secrets."nebula/host-key" = lib.mkIf (cfg.privateKeyPath == null) {
      owner = config.users.users.nebula-mesh.name;
      restartUnits = [ "nebula@mesh.service" ];
--- a/scripts/install-anywhere.nix
+++ b/scripts/install-anywhere.nix
@ -1,7 +1,5 @@
 { pkgs, ... }:
-pkgs.writeShellApplication {
+{
  name = "install-anywhere";
  runtimeInputs = [
    pkgs.sops
    pkgs.ssh-to-age
--- a/scripts/nebula/recert-all-hosts.nix
+++ b/scripts/nebula/recert-all-hosts.nix
@ -1,7 +1,5 @@
 { self', pkgs, ... }:
-pkgs.writeShellApplication {
+{
  name = "nebula-recert-all-hosts";
  runtimeInputs = [
    pkgs.bitwarden-cli
    pkgs.jq
--- a/scripts/nebula/recert-host.nix
+++ b/scripts/nebula/recert-host.nix
@ -1,7 +1,5 @@
 { pkgs, ... }:
-pkgs.writeShellApplication {
+{
  name = "nebula-recert-host";
  runtimeInputs = [
    pkgs.nebula
    pkgs.bitwarden-cli
Author	SHA1	Message	Date
SebastianStork	050d607cd3	flake.nix: Avoid path concatenation in imports mapping	2026-02-14 23:57:00 +01:00
SebastianStork	0ea72891c8	scripts: Refactor following tests' example	2026-02-14 23:54:13 +01:00
SebastianStork	a3bae7baec	tests: Refactor parts module	2026-02-14 23:53:12 +01:00
SebastianStork	d92342ab4c	networking/overlay: Move defaults from nebula	2026-02-14 23:47:32 +01:00