Compare commits

...

18 commits

Author SHA1 Message Date
49bc52b2df Merge pull request 'switch to forgejo actions' (#5) from actions-testing into master
All checks were successful
/ check (push) Successful in 1m58s
Reviewed-on: #5
2023-10-05 16:31:15 -04:00
864decbb8a
fix syntax
All checks were successful
/ check (push) Successful in 2m5s
2023-10-05 16:23:41 -04:00
fa58496a97
switch back gh token 2023-10-05 16:20:31 -04:00
70b323d8c4
forgejo: remove sudo from pkgs 2023-10-05 16:07:51 -04:00
f98544ab12
switch gh token again 2023-10-05 16:07:43 -04:00
e07558bf95
try this for auth 2023-10-05 16:05:20 -04:00
a4bc759142
ci: try using different conf 2023-10-05 16:00:45 -04:00
e6caef73e0
ci: init gh access token 2023-10-05 15:58:45 -04:00
6342f2f19f
forgejo: install pkgs for runners
Some checks failed
/ check (push) Failing after 26s
2023-10-05 15:54:57 -04:00
4316a26a57
ci: try using different installer 2023-10-05 15:54:47 -04:00
882c0723e9
ci: try test workflows
Some checks failed
/ check (push) Failing after 5s
2023-10-05 15:23:06 -04:00
c6227b3031
disable woodpecker
All checks were successful
/ test (push) Successful in 2s
2023-10-05 15:04:20 -04:00
116fc3022c
sops: add forgejo runner token
All checks were successful
/ test (push) Successful in 2s
2023-10-05 14:55:51 -04:00
ff62d8cefb
forgejo: use sops for runner token
All checks were successful
/ test (push) Successful in 2s
2023-10-05 14:55:34 -04:00
c2392d759c
forgejo: init actions runner
All checks were successful
/ test (push) Successful in 1s
2023-10-05 14:45:45 -04:00
fbeb360a9c
ci: remove .woodpecker 2023-10-05 14:45:39 -04:00
9cb73ed40a
ci: init .forgejo
All checks were successful
/ test (push) Successful in 21s
ci/woodpecker/push/checks Pipeline was successful
2023-10-05 14:43:31 -04:00
28546da92c
ci: init forgejo ci folder
All checks were successful
ci/woodpecker/push/checks Pipeline was successful
2023-10-05 14:02:59 -04:00
7 changed files with 41 additions and 16 deletions

View file

@ -0,0 +1,11 @@
on: [push]
jobs:
check:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: install nix action
uses: https://github.com/DeterminateSystems/nix-installer-action@main
with:
github-token: ${{ secrets.GH_TOKEN }}
- run: nix flake check

View file

View file

View file

@ -1,11 +0,0 @@
steps:
check:
image: nixos/nix
commands:
- echo 'experimental-features = flakes nix-command' >> /etc/nix/nix.conf
- nix flake check
fmt:
image: nixos/nix
commands:
- echo 'experimental-features = flakes nix-command' >> /etc/nix/nix.conf
- nix run nixpkgs#alejandra -- -c .

View file

@ -4,7 +4,6 @@
./authelia.nix ./authelia.nix
./forgejo.nix ./forgejo.nix
./rustypaste.nix ./rustypaste.nix
./woodpecker.nix
./hedgedoc.nix ./hedgedoc.nix
./dashdot.nix ./dashdot.nix
./grafana.nix ./grafana.nix

View file

@ -1,4 +1,10 @@
{lib, ...}: { {
pkgs,
lib,
config,
...
}: {
sops.secrets.forgejo-runner-token = {owner = "forgejo";};
services.forgejo = { services.forgejo = {
enable = true; enable = true;
stateDir = "/var/lib/forgejo"; stateDir = "/var/lib/forgejo";
@ -10,7 +16,7 @@
}; };
actions = { actions = {
ENABLED = true; ENABLED = true;
DEFAULT_ACTIONS_URL = "https://gitea.com"; DEFAULT_ACTIONS_URL = "https://code.forgejo.org";
}; };
server = { server = {
HTTP_PORT = 3200; HTTP_PORT = 3200;
@ -32,4 +38,23 @@
}; };
}; };
}; };
services.gitea-actions-runner.instances.main = {
enable = true;
name = config.networking.hostName;
url = "https://git.flake.sh";
token = config.sops.secrets.forgejo-runner-token.path;
labels = [
"debian-latest:docker://node:18-bullseye"
"ubuntu-latest:docker://node:18-bullseye"
#"native:host"
];
hostPackages = with pkgs; [
bash
curl
coreutils
wget
gitMinimal
wget
];
};
} }

View file

@ -13,6 +13,7 @@ miniflux: ENC[AES256_GCM,data:C4kurW7+C62ewPUalvJWnxV/fipCEwFFvkAst13aRAwi0v+R8g
authelia-jwt: ENC[AES256_GCM,data:cAn2uZeSGjG2FqTFgZkupcSutCZLvZXCNBsxuUQvGX4=,iv:1OTDQzQwaPTmnTEB4TfnxU6l8CdBAlHfqFThE8QZa6A=,tag:KJ6aYDczHFajhLJHemfIQw==,type:str] authelia-jwt: ENC[AES256_GCM,data:cAn2uZeSGjG2FqTFgZkupcSutCZLvZXCNBsxuUQvGX4=,iv:1OTDQzQwaPTmnTEB4TfnxU6l8CdBAlHfqFThE8QZa6A=,tag:KJ6aYDczHFajhLJHemfIQw==,type:str]
authelia-sek: ENC[AES256_GCM,data:yWhAvl1AuEcrUCFAv2vcz6A8BLEIMIz9sqbFRAriHpw=,iv:i887EZgqGtRfFs6mHHAJry0XfQzvrTaDliz8PRh7oLs=,tag:dmn2GSG8gZk9CVXMNmH1Dw==,type:str] authelia-sek: ENC[AES256_GCM,data:yWhAvl1AuEcrUCFAv2vcz6A8BLEIMIz9sqbFRAriHpw=,iv:i887EZgqGtRfFs6mHHAJry0XfQzvrTaDliz8PRh7oLs=,tag:dmn2GSG8gZk9CVXMNmH1Dw==,type:str]
cloudflareddns: ENC[AES256_GCM,data:xow7oaqa3QbMPwggx2zmGvLcKmov7isvLLZKuC6jW/SNjst8kicSQmNhrZw8M/eq8TuqxOT4BqMILQ+I7As2ZCOjSbEBxi1DwU/z47qI,iv:W8UH4kWlh9JyxcGkeuOjRZKqjOHDg9vpzXezHYs1kEg=,tag:YgGk7svEQr9sqLJtKWcHqA==,type:str] cloudflareddns: ENC[AES256_GCM,data:xow7oaqa3QbMPwggx2zmGvLcKmov7isvLLZKuC6jW/SNjst8kicSQmNhrZw8M/eq8TuqxOT4BqMILQ+I7As2ZCOjSbEBxi1DwU/z47qI,iv:W8UH4kWlh9JyxcGkeuOjRZKqjOHDg9vpzXezHYs1kEg=,tag:YgGk7svEQr9sqLJtKWcHqA==,type:str]
forgejo-runner-token: ENC[AES256_GCM,data:cmE70bA22B1YMr/iD32f+TRhk/X1f4aA8N4z1NGj4GxLgYMXkS1FpA==,iv:8XQ00VnQTyOh3wgb3ipO8P0QTo3qPSAJXvf7rRGi+Tc=,tag:QZpyUa+MDL8Hsjj3mdpOnA==,type:str]
sops: sops:
kms: [] kms: []
gcp_kms: [] gcp_kms: []
@ -28,8 +29,8 @@ sops:
YWNQcURKMSs2U0pOa3E0cTdCZ3RnalkKGayA7DBUQS+kn+6OYVBc6oTunF0qeZdt YWNQcURKMSs2U0pOa3E0cTdCZ3RnalkKGayA7DBUQS+kn+6OYVBc6oTunF0qeZdt
5b9DLHgh0HRWFm09XGSOog8K315d93Wzblw1My1/dXeEQX/ryinqUQ== 5b9DLHgh0HRWFm09XGSOog8K315d93Wzblw1My1/dXeEQX/ryinqUQ==
-----END AGE ENCRYPTED FILE----- -----END AGE ENCRYPTED FILE-----
lastmodified: "2023-10-03T19:45:04Z" lastmodified: "2023-10-05T18:49:20Z"
mac: ENC[AES256_GCM,data:wTc3M3ivjFWumD0pjSPfaf96dAefRCGxupx7X7F4LiH0RsgsX6godc9N9Er1S5rk/uht07rwpMTdEPUXKRofsRlUrLPaOu/q/74QptNCLtwSQxTIpSiWyIYeQz1nuizkqdZdCCaBXAiVpk8vPp9RDe21ZUgZzEDOeWrg9cYMFmg=,iv:8xzWyRQz6w764ZFAaMKf47HqlkJEVgVUjOeP8cvKlTE=,tag:/nfRoAEAb2IzknuD0CDnEA==,type:str] mac: ENC[AES256_GCM,data:kREsbUEnGXtF5gsAsYt3OwlIK2EirR6qP5hTHcdiEqtSpfjjYR1ifDEGL3Pdr3it/aceuHXprxf3UcTHlIlmQFp/m7UQdiQVp/nUJnSCcWKNxPUru832rp6T41mQ6iU+Np9rHSUMGhKeUEFUBuIFqVScWG/HmZvti079ZcFRBCQ=,iv:G0mgLbH2WiOQOfRgYFeH5k+FtGaaN4mKvKf/WQB/nZk=,tag:c/WOM52rSTquTfT5hKyxiw==,type:str]
pgp: [] pgp: []
unencrypted_suffix: _unencrypted unencrypted_suffix: _unencrypted
version: 3.8.0 version: 3.8.0