Allow to pass arguments to hermetic configuration if it's a function

tomferon · tomferon · commit 8d095e990338 · 2021-06-12T14:51:31.000+03:00
diff --git a/deploy_nixos/main.tf b/deploy_nixos/main.tf
@@ -81,6 +81,12 @@ variable "triggers" {
   default     = {}
 }
 
+variable "arguments" {
+  type        = map(any)
+  description = "A map of values to pass to the Nix expression. It only works form 'hermetic' configurations. For secrets, use 'keys' instead."
+  default     = {}
+}
+
 variable "keys" {
   type        = map(string)
   description = "A map of filename to content to upload as secrets in /var/keys"
@@ -129,7 +135,8 @@ data "external" "nixos-instantiate" {
     # end of positional arguments
     # start of pass-through arguments
     "--argstr", "system", var.target_system,
-    "--arg", "hermetic", var.hermetic
+    "--arg", "hermetic", var.hermetic,
+    "--argstr", "argumentsJson", jsonencode(var.arguments)
     ],
     var.extra_eval_args,
   )
@@ -197,4 +204,3 @@ output "id" {
   description = "random ID that changes on every nixos deployment"
   value       = null_resource.deploy_nixos.id
 }
-
diff --git a/deploy_nixos/nixos-instantiate.sh b/deploy_nixos/nixos-instantiate.sh
@@ -9,11 +9,19 @@ shift 3
 
 
 command=(nix-instantiate --show-trace --expr '
-  { system, configuration, hermetic ? false, ... }:
+  { system, configuration, hermetic ? false, argumentsJson, ... }:
   let
+    arguments = builtins.fromJSON argumentsJson;
+
     os =
       if hermetic
-        then import configuration
+        then
+          let
+            config = import configuration;
+          in
+          if builtins.isFunction config
+            then config arguments
+            else config
         else import <nixpkgs/nixos> { inherit system configuration; };
   in {
     inherit (builtins) currentSystem;
