646b892680
Some checks failed
Periodic Merges (6h) / master → staging-nixos (push) Failing after 12m50s
Periodic Merges (6h) / master → staging-next (push) Failing after 12m54s
Periodic Merges (24h) / merge-base(master,staging) → haskell-updates (push) Failing after 11m54s
Periodic Merges (6h) / staging-next → staging (push) Failing after 12m13s
Periodic Merges (24h) / staging-next-25.05 → staging-25.05 (push) Failing after 13m24s
Periodic Merges (24h) / release-25.05 → staging-next-25.05 (push) Failing after 14m28s
86 lines
2.1 KiB
Nix
86 lines
2.1 KiB
Nix
{
|
|
lib,
|
|
fetchFromGitHub,
|
|
buildGoModule,
|
|
installShellFiles,
|
|
versionCheckHook,
|
|
nix-update-script,
|
|
nixosTests,
|
|
callPackage,
|
|
stdenvNoCC,
|
|
withUi ? true,
|
|
withHsm ? stdenvNoCC.hostPlatform.isLinux,
|
|
}:
|
|
|
|
buildGoModule (finalAttrs: {
|
|
pname = "openbao";
|
|
version = "2.4.1";
|
|
|
|
src = fetchFromGitHub {
|
|
owner = "openbao";
|
|
repo = "openbao";
|
|
tag = "v${finalAttrs.version}";
|
|
hash = "sha256-HfPkjeScegylpA/i8KlS3t468pmD5sRwp2Ct164fkTo=";
|
|
};
|
|
|
|
vendorHash = "sha256-4SWpWGWoesUCgSpgOpblkxOpPbBC/grC2S1m7R9qasY=";
|
|
|
|
proxyVendor = true;
|
|
|
|
subPackages = [ "." ];
|
|
|
|
tags = lib.optional withHsm "hsm" ++ lib.optional withUi "ui";
|
|
|
|
ldflags = [
|
|
"-s"
|
|
"-X github.com/openbao/openbao/version.GitCommit=${finalAttrs.src.rev}"
|
|
"-X github.com/openbao/openbao/version.fullVersion=${finalAttrs.version}"
|
|
"-X github.com/openbao/openbao/version.buildDate=1970-01-01T00:00:00Z"
|
|
];
|
|
|
|
postConfigure = lib.optionalString withUi ''
|
|
cp -r --no-preserve=mode ${finalAttrs.passthru.ui} http/web_ui
|
|
'';
|
|
|
|
nativeBuildInputs = [
|
|
installShellFiles
|
|
];
|
|
|
|
postInstall = ''
|
|
mv $out/bin/openbao $out/bin/bao
|
|
|
|
# https://github.com/posener/complete/blob/9a4745ac49b29530e07dc2581745a218b646b7a3/cmd/install/bash.go#L8
|
|
installShellCompletion --bash --name bao <(echo complete -C "$out/bin/bao" bao)
|
|
'';
|
|
|
|
nativeInstallCheckInputs = [
|
|
versionCheckHook
|
|
];
|
|
versionCheckProgram = "${placeholder "out"}/bin/bao";
|
|
versionCheckProgramArg = "--version";
|
|
doInstallCheck = true;
|
|
|
|
passthru = {
|
|
ui = callPackage ./ui.nix { };
|
|
tests = { inherit (nixosTests) openbao; };
|
|
updateScript = nix-update-script {
|
|
extraArgs = [
|
|
"--subpackage"
|
|
"ui"
|
|
];
|
|
};
|
|
};
|
|
|
|
meta = {
|
|
homepage = "https://www.openbao.org/";
|
|
description = "Open source, community-driven fork of Vault managed by the Linux Foundation";
|
|
changelog = "https://github.com/openbao/openbao/blob/v${finalAttrs.version}/CHANGELOG.md";
|
|
license = lib.licenses.mpl20;
|
|
mainProgram = "bao";
|
|
maintainers = with lib.maintainers; [
|
|
brianmay
|
|
emilylange
|
|
];
|
|
};
|
|
})
|