2024-09-07 14:50:44 -05:00
|
|
|
{ pkgs, config, ... }:
|
|
|
|
|
{
|
2024-05-23 12:22:57 -05:00
|
|
|
imports = [
|
2024-09-07 14:50:44 -05:00
|
|
|
./common.nix
|
2024-05-23 12:22:57 -05:00
|
|
|
];
|
2024-05-15 07:45:21 -05:00
|
|
|
|
2024-09-13 18:21:12 -05:00
|
|
|
# Generic x86 VM
|
2024-05-14 12:03:36 -05:00
|
|
|
services.gitea-actions-runner = {
|
|
|
|
|
package = pkgs.forgejo-actions-runner;
|
|
|
|
|
instances.default = {
|
|
|
|
|
enable = true;
|
2024-09-07 14:50:44 -05:00
|
|
|
name = "fj-x86_64";
|
2024-05-14 12:03:36 -05:00
|
|
|
url = "https://git.hsn.dev";
|
|
|
|
|
# Obtaining the path to the runner token file may differ
|
|
|
|
|
tokenFile = config.sops.secrets.forgejo-runner-token.path;
|
|
|
|
|
labels = [
|
2024-09-13 18:21:12 -05:00
|
|
|
"docker" # this is essentially the same as the below tag
|
|
|
|
|
"docker-x86_64:docker://node:20-bullseye"
|
2024-05-23 11:26:32 -05:00
|
|
|
"x86_64"
|
2024-05-20 08:46:49 -05:00
|
|
|
"linux"
|
2024-09-13 18:21:12 -05:00
|
|
|
"remote"
|
2024-05-14 12:03:36 -05:00
|
|
|
];
|
|
|
|
|
};
|
|
|
|
|
};
|
2024-06-18 17:52:57 -05:00
|
|
|
|
2024-09-13 18:21:12 -05:00
|
|
|
sops.secrets."forgejo-runner-token" = {
|
|
|
|
|
# configure secret for the gitea/forgejo runner.
|
|
|
|
|
sopsFile = ./secrets.sops.yaml;
|
|
|
|
|
mode = "0444";
|
|
|
|
|
restartUnits = [ "gitea-runner-default.service" ];
|
|
|
|
|
};
|
|
|
|
|
|
2024-09-07 14:50:44 -05:00
|
|
|
sops.secrets."cachix/agent_auth_tokens/fj-x86_64" = {
|
|
|
|
|
# configure secret for cachix deploy agent.
|
|
|
|
|
sopsFile = ./secrets.sops.yaml;
|
|
|
|
|
mode = "0444";
|
|
|
|
|
restartUnits = [ "cachix-agent.service" ];
|
|
|
|
|
};
|
|
|
|
|
|
2024-06-18 17:52:57 -05:00
|
|
|
services.cachix-agent = {
|
|
|
|
|
enable = true;
|
2024-09-07 14:50:44 -05:00
|
|
|
credentialsFile = config.sops.secrets."cachix/agent_auth_tokens/fj-x86_64".path;
|
2024-06-18 17:52:57 -05:00
|
|
|
};
|
2024-09-07 14:50:44 -05:00
|
|
|
}
|
