infra/nixos/hosts/silver/services/k3s.nix

{
  config,
  lib,
  ...
}: {
  sops.secrets."k3s-token" = {
    sopsFile = ../../../../secrets/k3s-token.txt;
    format = "binary";
  };

  services.k3s = {
    enable = true;
    role = "server";
    clusterInit = true;
    tokenFile = config.sops.secrets."k3s-token".path;

    extraFlags = lib.concatStringsSep " " [
      "--disable=traefik"
      "--disable=servicelb"
      "--disable=local-storage"
      "--disable=helm-controller"
      "--tls-san=silver.int.min.rip"
    ];
  };
}
Initial deployment of k3s 2024-11-03 21:38:19 -06:00			`{`
			`config,`
			`lib,`
			`...`
			`}: {`
			`sops.secrets."k3s-token" = {`
			`sopsFile = ../../../../secrets/k3s-token.txt;`
			`format = "binary";`
			`};`

			`services.k3s = {`
			`enable = true;`
			`role = "server";`
			`clusterInit = true;`
			`tokenFile = config.sops.secrets."k3s-token".path;`

			`extraFlags = lib.concatStringsSep " " [`
			`"--disable=traefik"`
			`"--disable=servicelb"`
			`"--disable=local-storage"`
			`"--disable=helm-controller"`
			`"--tls-san=silver.int.min.rip"`
			`];`
			`};`
			`}`