fix ssm

.gitignore

@@ -1,7 +1,7 @@
 terraform.tfstate*
 .direnv
 .terraform
-result
+result*
 cache.key
 plan.out
 .vscode

deploy/instance.tf

@@ -50,22 +50,16 @@ resource "aws_instance" "web" {
   }
 }
 
-locals {
-  flake = "github:arianvp/nixos-village#nixosConfigurations.web.config.system.build.toplevel"
-}
-
-
 resource "aws_ssm_association" "web" {
-  association_name = "web-deploy-hourly"
-  name = module.ssm_documents.nixos_deploy.name
+  association_name = "web-deploy"
+  name             = module.ssm_documents.nixos_deploy.name
   parameters = {
-    installable = local.flake
+    installable = "github:arianvp/nixos-village#nixosConfigurations.web.config.system.build.toplevel"
+    action      = "switch"
   }
   targets {
     key    = "tag:Name"
     values = ["web"]
   }
-
-  # roll out updates every hour
-  schedule_expression = "rate(1 hour)"
+  schedule_expression = "rate(30 minutes)"
 }

deploy/modules/ssm_documents/deploy.sh

@@ -15,7 +15,7 @@ nixStorePath=$(/run/current-system/sw/bin/nix build \
   --print-out-paths \
   "$installable")
 
-if [ "$action" == "boot" ] && [ "$(/run/current-system/sw/bin/readlink /run/current-system)" == "$(/run/current-system/sw/bin/readlink ./result)" ]; then
+if [ "$(/run/current-system/sw/bin/readlink /run/current-system)" == "$(/run/current-system/sw/bin/readlink ./result)" ]; then
   echo "Already booted into the desired configuration"
   exit 0
 fi

nix/configs/web.nix

@@ -11,8 +11,6 @@
 
   services.getty.autologinUser = "root";
 
-  users.users.root.initialHashedPassword = "$y$j9T$sTq5/5v8FYMgdBNN8dWny0$wkGYT3Jv.UGxteor8V7CL99v6OFtHqqmrhEOGlYs.53";
-
   # services.journald.console = "/dev/ttyS0";
 
   networking.firewall.allowedTCPPorts = [ 80 443 ];