about summary refs log tree commit diff
AgeCommit message (Collapse)AuthorFilesLines
2020-08-20 Prefer reading secrets.json to using pass showWilliam Carroll5-8/+14
I'm attempting to maintain a top-level secrets.json that defines all of the sensitive data that I'd like to version-control without exposing everything in cleartext to the world. To that end, I'm using `git secret`, which will use `gpg` to encrypt secrets.json everytime I call `git secret hide` and decrypt everytime I call `git secret reveal`. I'm going to try this until I don't like it anymore... if that day comes... I should write a blog post about my setup to solicit useful feedback and share my ideas with others.
2020-08-20 Testing git-secretWilliam Carroll3-0/+2
Adding a dummy, top-level secrets.json file using `git-secret`. It might be nice to have a mono-secrets file in json because then I can use it with `jq` like: ```shell $ jq '.secret' --join-output < ~/briefcase/secrets.json ```
2020-08-20 Remove 2x-newlines from .gitignoreWilliam Carroll1-5/+0
I saw an issue on GitHub that claims that git-secret doesn't like 2x-newlines in .gitignore files. Let's see if that helps...
2020-08-20 Setup git-secretWilliam Carroll5-0/+2
This morning I'm attempting to secure my monorepo. How? - `git secret`: DONE: To version-control sensitive data - `git secrets`: TODO: Lint code for sensitive data I will probably update the CI to call `git secrets --scan` or some similar command to fail when that exists non-zero. I have much to learn, but doing is the best way to learn it.
2020-08-20 Simplify EXWM init hookWilliam Carroll1-31/+1
Anytime something before or during window-manager.el fails to evaluate, I lose the ability to type, but I *can* still click. @tazjin recommended that I use the mouse to cycle to the *Warnings* buffer, which led me to another bug in a series of bugs that I'm uncovering: ~/briefcase/org didn't exist. A simple mistake like this should break my WM startup, so I decided to remove most of my init hook logic.
2020-08-20 Add XMODIFIERS=emacsWilliam Carroll1-1/+2
This fixes the latest segfault I encountered after /usr/bin/{google-emacs,emacs} was updated...
2020-08-20 Debug evil-want-keybindings issueWilliam Carroll1-1/+1
Problem: dependency loading order I originally assumed that keybindings.el was the first module to `require 'evil` because init.el shows: ```elisp (require 'keybindings) (require 'window-manager) ``` The problem is that keybindings.el calls `require 'window-manager` and window-manager.el requires evil! I admit, I've created a bit of a birds nest for myself. A few thoughts: - keybindings.el doesn't need to `require 'window-manager`. Fixed! - window-manager.el shouldn't need to `require 'evil`. TODO...
2020-08-20 Drop use-package in keybindings.elWilliam Carroll1-79/+63
I'm attempting to kill that zombie bug about evil-want-keybinding...
2020-08-20 Add missing dependencies to emacs/default.nixWilliam Carroll1-0/+2
While debugging some broken Emacs config, I ran Emacs in X, where for some reason my PATH doesn't have my nix-env dependencies... because of this, when I call `~/.nix-profile/bin/wpcarros-emacs` to start my Emacs, I saw warnings about missing packages that I hadn't seen before. Nice!
2020-08-20 Drop support for wpc-keybindingsWilliam Carroll3-191/+121
In favor of keybindings.el! Now I have: - kbd.el: There are no keybindings in this file. It's just a library for working with keybindings in Emacs. - keybindings.el: (hopefully) all of my keybindings for EXWM, evil, etc.
2020-08-20 Remove unused kbd/install-kbds?William Carroll1-8/+0
In another refactor, I'd like to move all ad-hoc keybindings out of individual modules and into keybindings.el.
2020-08-20 Centralize <SPC> in normal mode KBDsWilliam Carroll2-45/+28
Merging keybinding and wpc-keybindings step-by-step...
2020-08-20 Delete unused KBDsWilliam Carroll1-9/+0
Now that everything is in my monorepo, it's easy for me to use <SPC>jd to search for these files.
2020-08-20 Add --no-out-link to ci/scriptsWilliam Carroll2-1/+2
I don't need the ./result symlinks...
2020-08-20 Remove <unstable> from briefcaseWilliam Carroll2-7/+2
I don't use this anywhere, so it's time to shed more weight.
2020-08-20 Move scratch/brilliant into //assessmentsWilliam Carroll10-0/+0
Where it belongs...
2020-08-20 Drop support for dir-locals.nix, <nixpkgs>, etc.William Carroll55-118/+102
In the spirit of Marie Kondo, I'm tidying up! TL;DR: - Prefer .envrc `use_nix` and delete all dir-locals.nix files - Remove ~all references to <nixpkgs>, <unstable>, <depot> and prefer referencing each with briefcase.third_party.{pkgs,unstable,depot} - Delete nixBufferFromShell function since I was only using that in dir-locals.nix files
2020-08-20 Move /home/wpcarro/nixpkgs-channels to /var/libWilliam Carroll2-2/+2
My builds are still failing. This time with... ``` error: getting status of /home/wpcarro/nixpkgs-channels: Permission denied ``` ...what confused me was the following: ```shell $ sudo -u buildkite-agent-socrates stat /home/wpcarro/nixpkgs-channels permission denied ``` But `ls -al /home/wpcarro | grep nixpkgs-channels` showed `r-w` for all users... Thankfully @riking on ##tvl told me that I should check the permissions for /home/wpcarro and /home... After running `ls -al /home`, I saw `---` for all user... I then reproduced the error by running: ```shell $ sudo -u buildkite-agent-socrates stat /home permission denied ``` Great! So then I moved nixpkgs-channels to /var/lib/buildkite-agent-socrates. @edef recommended that I read more about DynamicUser= setting for systemd, which looks relevant after I took a cursory glance. I'll also want a more declarative way to manager this, but I'm making small improvements every day.
2020-08-20 Move buildkite's SSH key out of /home/wpcarro into /etc/sshWilliam Carroll1-0/+1
After enabling buildkite-agent using NixOS, it runs as its own user, buildkite-agent-socrates, which does not have its own home directory. I moved the SSH key that I made when running buildkite-agent as wpcarro into /etc/ssh and `chown`'d it for buildkite-agent-socrates.
2020-08-20 Enable services.buildkite-agentsWilliam Carroll1-7/+7
Instead of enabling `buildkite-agent` ad hoc, use NixOS to configure it.
2020-08-20 Add CI build status badge to top-level READMEWilliam Carroll1-0/+2
Wahoo!
2020-08-20 Support build-briefcase.shWilliam Carroll3-2/+7
For now, I'm supporting two CI pipelines: - build-socrates - build-briefcase Conceptually, build-briefcase should cover what build-socrates does now, but eventually I would like build-socrates to call `switch-to-configuration` so that all of my websites, etc. stay fresh.
2020-08-20 Disable failing goals/default.nixWilliam Carroll4-7/+2
Disabling failing packages until I can get a working CI build.
2020-08-20 Revise previous opinions about absolute paths GT <bracket-notation>William Carroll11-21/+12
Unforeseen problem: `buildkite-agent` runs its builds in a separate directory, so if I want the `nix-build` command to build the newly checked out code, I need to set <briefcase> to the CWD.
2020-08-20 Attempt nix-build instead of nixos-rebuild switchWilliam Carroll5-33/+17
I've encountered a few problems with attempting to support nixos-rebuild: - the activation step requires `sudo` privileges - the `buildkite-agent` runs on the same machine, socrates, that is rebuilding itself. This means that when the activation step runs, it will attempt to restart `buildkite-agent` when the agent is still working I'm slowly removing places in my nix code that rely on '<bracket>' notation, so that I no longer depend on NIX_PATH being set. I still have more work to do. {covid-uk,sandbox}/default.nix are breaking when I attempt to run my build-socrates.sh script locally, so I'm temporarily disabling them until I can get CI working as I expect.
2020-08-20 Prefer nixos-rebuild to the rebuild scriptWilliam Carroll1-4/+6
The rebuild script calls sudo, which I won't need as I test running buildkite-agent prefixed with `sudo` or as the root user.
2020-08-20 Define buildkite-agent userWilliam Carroll1-0/+7
I'd like my buildkite-agent to run as its own user, so I'm defining that user here.
2020-08-20 Log all polkit actions to find action.id for nixos-rebuildWilliam Carroll1-0/+6
I would like to setup a polkit rule to allow `buildkite-agent` (i.e. a forthcoming user) to call `nixos-rebuild`. I need to know the `action.id` before I can write a reliable rule.
2020-08-20 Debug $USER in build-socrates.shWilliam Carroll1-1/+1
Attempting to see what $USER the buildkite-agent is when it runs.
2020-08-20 Debug build-socrates.shWilliam Carroll1-1/+4
- using `set -euo pipefail` for setting recommended failure-modes - using `set -x` and `echo "$PATH"` to debug my failing build Sidenote: I find BuildKite's documentation quite helpful!
2020-08-20 Attempt to build Socrates using BuildKiteWilliam Carroll3-1/+9
Let's see what happens...
2020-08-20 Set -Wall and cleanup warningsWilliam Carroll2-9/+11
I should have done this from the start.
2020-08-20 Create an assessment directoryWilliam Carroll10-0/+359
I've been doing a few take-home assessment recently, all of which I've attempted to solve using Haskell. I'm having a good time, and I'm noticing strong and weak points with my Haskell programming. I always attempt to apply any feedback a reviewer gives me, and I'm storing my first drafts, second attempts, and feedback here for now. This recently attempt was for a role at Jane Street.
2020-08-20 List directories first in dired viewWilliam Carroll1-0/+1
Ideally I'd use exa insted of ls, but I cannot seem to support that yet.
2020-08-20 Restore shell.nixWilliam Carroll1-0/+10
I believe `use_nix` looks for shell.nix and then default.nix files, so I was wrong earlier when I said that I could get rid of shell.nix files altogether. I need to learn more about `use_nix` and getting environments from default.nix files.
2020-08-20 Drop support for wpc/find-fileWilliam Carroll2-9/+1
Cleaning things up...
2020-08-20 Prefer direnv's use_nix to shell.nixWilliam Carroll2-10/+1
I find it bothersome to share the list of Haskell dependencies between my default.nix and shell.nix files. A few days ago, I created a THIRD file, shared.nix, that defined the shared code b/w default.nix and shell.nix. This DRY'd things up, but it also added a new file, which I didn't like. Today I learned that direnv integrates with Nix using a function called `use_nix`. Voila! I typically already have .envrc files per-project, so this doesn't add any unnecessary files, and it allows me to delete my shell.nix files. I would use `lorri`, except that I encountered issues using Lorri on my work computer, which I'm not interested in attempting to resolve now.
2020-08-20 Change GET /mimi to GET /helloWilliam Carroll1-4/+8
Timing myself to see how long it takes me to publish a change.
2020-08-20 Define the monoserver as a systemd serviceWilliam Carroll1-0/+10
Much better than manually running: ```shell $ cd ~/briefcase && git pull --rebase origin master $ nix-rebuild switch $ nix-build -A zoo $ pkill zoo $ ./result/zoo & $ job -l $ disown %<job-number> ```
2020-08-20 Add GET /mimi to zooWilliam Carroll1-1/+5
Proving to my girlfriend that the zoo works.
2020-08-20 Add host field for nginx JSON logsWilliam Carroll1-0/+1
I'd like to filter logs from {blog,git,zoo}.wpcarro.dev, etc.
2020-08-20 Remove logging prefix from Nginx logsWilliam Carroll1-9/+10
Problem: The JSON that Nginx outputs cannot be successfully parsed by journaldriver because Nginx prefixes it with "socrates nginx:". Adding `nohostname` to `access_log` should solve this problem. I borrow this from @tazjin's most recent definition of `commonHttpConfig`.
2020-08-20 Use journaldriver to view journald logs from SocratesWilliam Carroll1-0/+7
Attempting to use @tazjin's delightful simple logging library!
2020-08-20 Disabling the monzo-token-serverWilliam Carroll1-21/+19
I haven't used this since I wrote it... and now the .tokens attribute is missing and it's screwing up my other deployment... *sigh*
2020-08-20 Forward zoo.wpcarro.dev connections to :8000William Carroll2-0/+8
Right now the 8000 port is hard-coded into the zoo server, which isn't ideal, but "it works" (TM).
2020-08-20 Move shift-time into top-level //zooWilliam Carroll5-23/+30
I'm still unsure whether or not this is a good idea, but experimenting is a good way to find out!
2020-08-20 Support parsing and shifting timeWilliam Carroll4-20/+130
TL;DR: - Adds string-conversions library - Adds tests for remaining units and repeating requests - Adds a REPL in main
2020-08-20 Support parsing second shiftsWilliam Carroll5-0/+125
Parse inputs like -10s into 10 second shifts back in time.
2020-08-20 Support POST /create-payment-intentWilliam Carroll7-5/+118
Interact with Stripe's payment_intents API endpoint. I'm not committing the index.html that contains client-side code that interacts with the /create-payment-intent endpoint, but it contains sensitive information, so I'm omitting it for now. TL;DR: - Define POST /create-payment-intent endpoint - Include envStripeAPIKey in Context record - Define a top-level Stripe module for making API calls - Define types and instances that align with Stripes request and response types - Depend on the Req library: a higher-level library than http-client
2020-08-13 Prefer project.el to projectileWilliam Carroll2-1/+42
Today @tazjin told me about Emacs's built-in project.el library, which he recommended that I extend to support monorepo-specific tooling. It worked like a charm! Now when I press "<leader>f", it will resolve to either the nearest file named default.nix or directory name .git.