aiolabs/webapp
8
0
Fork 0
Code Issues 65 Pull requests Projects Releases Packages Wiki Activity Actions

feat(nix): flake.nix exposing lib.mkWebapp #98

Merged
padreug merged 3 commits from feat/flake-mkwebapp into dev 2026-06-10 13:52:29 +00:00
Conversation 0 Commits 3 Files changed 4 +12 -2
1 changed files with 12 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files
Showing only changes of commit 14283f62e0 - Show all commits

fix(nix): pin pnpm_10 and set CI=true for downstream consumers

Prev Next 
Two issues found when calling lib.mkWebapp from an external nixpkgs
(server-deploy's scenario):

- pnpm 10 in the sandbox aborts with
  ERR_PNPM_ABORTED_REMOVE_MODULES_DIR_NO_TTY when it sees a
  modules-purge prompt without a TTY. CI=true is pnpm's documented
  bypass; harmless on builds that don't need it.

- Pinning pkgs.pnpm leaves it floating with the consumer's nixpkgs
  (flake's nixos-unstable has pnpm 11.5.1, system nixpkgs has 10.33,
  etc.). pnpmDeps hash is per-pnpm-version so a floating pnpm means
  consumers hit hash mismatches. Pinning pkgs.pnpm_10 locks to the
  same major series that produced the lockfile (package.json's
  packageManager: pnpm@10.33.0) while still allowing minor drift
  inside major-10.

New pnpmDeps hash reflects pnpm_10's snapshot format.

Verified end-to-end: `nix build --impure --expr '...lib.mkWebapp {
brandDir = /tmp/fixture; app = "events"; }'` with an external pkgs
produces a Sortir-branded dist-events (manifest name "Sortir", theme
#dc2626, bg #fff5f5, HTML title "Sortir").

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
Padreug 2026-06-10 10:43:54 +02:00
commit 14283f62e0

14
flake.nix
View file

@ -21,15 +21,22 @@
src = ./.; src = ./.;
# Pin pnpm major version (10.x) regardless of consumer's nixpkgs
# so the pnpmDeps hash stays stable for downstream callers that
# bring their own pkgs. package.json's packageManager field
# declares pnpm@10.33.0; pnpm_10 satisfies that.
pnpm = pkgs.pnpm_10;
pnpmDeps = pkgs.fetchPnpmDeps { pnpmDeps = pkgs.fetchPnpmDeps {
inherit (finalAttrs) pname version src; inherit (finalAttrs) pname version src;
inherit (finalAttrs) pnpm;
fetcherVersion = 3; fetcherVersion = 3;
hash = "sha256-GZuH5ndka9PEHjC00g+kUJW515Zj/+xW6DZQAaK8G4k="; hash = "sha256-FUN2lMHsaBTkk1tljDysYZAoQD+5MIBIEvGnRUWiF4s=";
}; };
nativeBuildInputs = [ nativeBuildInputs = [
pkgs.nodejs pkgs.nodejs
pkgs.pnpm finalAttrs.pnpm
pkgs.pnpmConfigHook pkgs.pnpmConfigHook
pkgs.autoPatchelfHook pkgs.autoPatchelfHook
]; ];
@ -47,6 +54,9 @@
env = { env = {
BRAND_DIR = "${brandDir}"; BRAND_DIR = "${brandDir}";
BRAND_APP = if app == "main" then "" else app; BRAND_APP = if app == "main" then "" else app;
# Avoid pnpm 10's interactive modules-purge prompt in the
# sandbox (ERR_PNPM_ABORTED_REMOVE_MODULES_DIR_NO_TTY).
CI = "true";
}; };
buildPhase = '' buildPhase = ''