Team and User Layered configuration using chezmoi
#2574
Lockszmith-GH
started this conversation in
Show and tell
Replies: 3 comments 10 replies
-
Updates and backlinks |
Beta Was this translation helpful? Give feedback.
7 replies
-
Placeholder for future 2 |
Beta Was this translation helpful? Give feedback.
0 replies
-
This is brilliant approach, is there any repo link that I am missing for this ? |
Beta Was this translation helpful? Give feedback.
3 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
chezmoi
is really versatile, I guess you already know this, but I thought I'd share our particular use-case.Who
We are a team of remote workers, almost all of us work on Linux machines (Pop!_OS), we have a few mac OS laptops and one or two Windows machine.
Currently
chezmoi
covers the Linux realm, but we might expand this in the future.We all work with GitLab SaaS under a Premium subscription, and all of repos are internal. (They are shared with the team, but not with the world).
What
I've developed a shared environment for the Linux users to use.
This environment does a lot - adds needed repos to apt on the local system, provides 'easy install' scripts, keep external resources up to date, customizes the work environment (fonts, prompts, auto-completion, history, git configuration, etc...), add support scripts to allow IT-Ops to quickly connect remotely and assist.
So, in short: A whole bunch of $h!t
I've been working on a layered approach to
chezmoi
, one that would allow each team member to manage their own personalchezmoi
repo, but this personal repo is tied to a shared team configuration which provides shared functionality and configuration.Why
By layering, if a team member wants to customize something on their own, they have the ability, but still get streamlined updates that are available to the entire team.
This makes
chezmoi
not only the safe-keeper of personal state, but a convenient delivery channel of updates to the base.How
Structure
Each user gets a fork of a template repo when they start. That repo has the following components:
.chezmoi.toml.tmpl
dotfiles_git_token
) that is used to pull the shared repo (aka base)init
- so this secret is never stored in the repo..chezmoitexternals.toml
0base
dotfiles repo which contains all of the shared functionality.dotfiles_git_token
value..chezmoiscripts
directory with:run_once_after_10_init_base_chezmoi
init
on the base chezmoi after it was pulled via externals.run_after_apply_base_chezmoi.sh
apply
- applying any changes pulled from the external base.Usage
The
0base
chezmoi-repo contains environment variables, scripts and aliases that provide different shorthand for callingchezmoi
:cz
- the user'schezmoi
context - pointing to the defaultchezmoi
dir:czb
- the base chezmoi context - pointing to a basechezmoi
dir:Context switching
For some 'more complex' calls, the context concept is designated using the
CONTEXT
environment variable.For example:
cz-init
is a script used to callchezmoi init
with the proper--script-path
parameter, so that values are written back into the same source config file it is called with.Running
cz-init
does this on the default (user) chezmoi repo.Running
CONTEXT=czb cz-init
however, will run it in the base context.But wait, there's is more...
There is more complexity the shared repo provides, like separating externals from the base configuration, which allows quicker responses from
chezmoi status
and makes maintaining and tracking changes faster (less accurate, but faster) from the base configuration, which allows quicker responses from chezmoi statusCode? (sometime?)
I'm almost ready to share the code, but not quite yet, as it's a bit messy (also need to have one of my colleagues validate I will not be exposing any secrets/password), but if you're interested, just 👀 this post, and I'll update below when I'm ready.I've never got to clean it up and publish - it is still in use. Ask questions and I'll do my best to answer.
Visual
Praise
I couldn't have done this without the support of Tom Payne the author, his support for this amazing tool is amazing on it's own level.
Thank you! (I didn't tag Tom as I assume he has enough noise as it is)
What about you?
I'm really interested to learn if others have developed other interesting patterns of usage with
chezmoi
?Did you ever face similar needs?
As we will venture into multi-platform coverage, I wonder about best approaches.
Beta Was this translation helpful? Give feedback.
All reactions