From ff62d8cefbaef3fc3ac38a36b9e1a90c5889ad5d Mon Sep 17 00:00:00 2001
From: notohh <github@notohh.dev>
Date: Thu, 5 Oct 2023 14:55:34 -0400
Subject: [PATCH] forgejo: use sops for runner token

---
 hosts/sakura/services/forgejo.nix | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/hosts/sakura/services/forgejo.nix b/hosts/sakura/services/forgejo.nix
index 8378b39..fabd747 100644
--- a/hosts/sakura/services/forgejo.nix
+++ b/hosts/sakura/services/forgejo.nix
@@ -3,6 +3,7 @@
   config,
   ...
 }: {
+  sops.secrets.forgejo-runner-token = {owner = "forgejo";};
   services.forgejo = {
     enable = true;
     stateDir = "/var/lib/forgejo";
@@ -40,7 +41,7 @@
     enable = true;
     name = config.networking.hostName;
     url = "https://git.flake.sh";
-    token = "WJXKbVSyfUVpeJYiFpRlf04CyxDS0mYG7at8B9kX";
+    token = config.sops.secrets.forgejo-runner-token.path;
     labels = [
       "debian-latest:docker://node:18-bullseye"
       "ubuntu-latest:docker://node:18-bullseye"