tsuru: enable runners

hosts/tsuru/services/default.nix

@@ -1,4 +1,5 @@
 _: {
   imports = [
+    ./forgejo-runners.nix
   ];
 }

hosts/tsuru/services/forgejo-runners.nix

@@ -3,7 +3,7 @@
   config,
   ...
 }: {
-  sops.secrets.forgejo-runner-token = {};
+  sops.secrets.snowflake-runner-token = {};
   sops.secrets.basegbot-runner-token = {};
   services.gitea-actions-runner = {
     package = pkgs.forgejo-actions-runner;
@@ -15,7 +15,7 @@
       };
       enable = true;
       name = config.networking.hostName;
-      token = config.sops.secrets.forgejo-runner-token.path;
+      token = config.sops.secrets.snowflake-runner-token.path;
       url = "https://git.flake.sh";
       labels = [
         "debian-latest:docker://node:18-bullseye"

hosts/yuki/services/default.nix

@@ -6,7 +6,6 @@
     ./homarr.nix
     ./dashdot.nix
     ./jellyfin.nix
-    ./forgejo-runners.nix
     ./minecraft.nix
   ];
 }

hosts/yuki/services/forgejo-runners.nix

@@ -1,57 +0,0 @@
-{
-  pkgs,
-  config,
-  ...
-}: {
-  sops.secrets.forgejo-runner-token = {};
-  sops.secrets.basegbot-runner-token = {};
-  services.gitea-actions-runner = {
-    package = pkgs.forgejo-actions-runner;
-    instances.snowflake = {
-      settings = {
-        container = {
-          network = "host";
-        };
-      };
-      enable = true;
-      name = config.networking.hostName;
-      token = config.sops.secrets.forgejo-runner-token.path;
-      url = "https://git.flake.sh";
-      labels = [
-        "debian-latest:docker://node:18-bullseye"
-        "ubuntu-latest:docker://node:18-bullseye"
-        #"native:host"
-      ];
-      hostPackages = with pkgs; [
-        bash
-        curl
-        coreutils
-        wget
-        gitMinimal
-      ];
-    };
-    instances.basegbot = {
-      settings = {
-        container = {
-          network = "host";
-        };
-      };
-      enable = true;
-      name = config.networking.hostName;
-      token = config.sops.secrets.basegbot-runner-token.path;
-      url = "https://git.flake.sh";
-      labels = [
-        "debian-latest:docker://node:18-bullseye"
-        "ubuntu-latest:docker://node:18-bullseye"
-        #"native:host"
-      ];
-      hostPackages = with pkgs; [
-        bash
-        curl
-        coreutils
-        wget
-        gitMinimal
-      ];
-    };
-  };
-}

hosts/yuki/services/neko.nix

@@ -1,22 +0,0 @@
-_: {
-  networking.firewall.allowedTCPPorts = [8080];
-  networking.firewall.allowedUDPPorts = [52000 52100];
-  virtualisation.oci-containers.containers.neko = {
-    image = "m1k1o/neko:firefox";
-    ports = [
-      "8080:8080"
-      "52000-52100:52000-52100/udp"
-    ];
-    environment = {
-      NEKO_SCREEN = "1920x1080@60";
-      NEKO_PASSWORD = "forsen";
-      NEKO_EPR = "52000-52100";
-      NEKO_NAT1TO1 = "100.110.140.130";
-      NEKO_BIND = "0.0.0.0:8080";
-      NEKO_CONTROL_PROTECTION = "true";
-      NEKO_VIDEO_CODEC = "h264";
-      NEKO_ICELITE = "true";
-      NEKO_ICESERVER = "stun:stun.l.google.com:19302";
-    };
-  };
-}

secrets/secrets.yaml

@@ -9,8 +9,8 @@ authelia-jwt: ENC[AES256_GCM,data:cAn2uZeSGjG2FqTFgZkupcSutCZLvZXCNBsxuUQvGX4=,i
 authelia-sek: ENC[AES256_GCM,data:yWhAvl1AuEcrUCFAv2vcz6A8BLEIMIz9sqbFRAriHpw=,iv:i887EZgqGtRfFs6mHHAJry0XfQzvrTaDliz8PRh7oLs=,tag:dmn2GSG8gZk9CVXMNmH1Dw==,type:str]
 tsauth-sora: ENC[AES256_GCM,data:3jzPB0whb9xHudVl/MhNeCUgjDfzzQpxGJGqfMf2GqEtfEkiynVTLO/TFDt1PorBuUQOjVfxn8c=,iv:5vLHbhY2ZlnsVQbLlu6Hxo32azpfcj6ORAMn3oSdcHY=,tag:zN8qPOSaSMMdJn+zsTXPaA==,type:str]
 tsauth-sakura: ENC[AES256_GCM,data:iN77ArKDnltxrWGCz8bMqMHBAp45oGUk+n5ilAE0tY2rz01PGaCmIgPFSDfNaMphH6gX+AbEd5Y=,iv:k/lBIZW7aKT3u+dgcFnQORah2yHZXAmY+PBv53tM1ao=,tag:9/pebj3D9LURTedqkduoaw==,type:str]
-forgejo-runner-token: ENC[AES256_GCM,data:uHwIBG2Ktdhs2nhfbidHSEkv7bwLnWzHZEa01sfnv2oYvtlHdnTXJQ==,iv:IRS+qLbIFl5GXxChogs6yxsUD4MxnjCw2VF3dxCvSnI=,tag:elTaJSO1ex4qrF9Wu8gx2A==,type:str]
+snowflake-runner-token: ENC[AES256_GCM,data:CYtnZeCCd3IbNq95xCAoftYRxYf5QdZk1cw2PgRQMkBBc2kVkBpluQ==,iv:zoUvBD0QYk3rZytVjKZ8qizLxiBdzkRnTowXUULgMZY=,tag:J5vg+ipkcPKUSmbCq0Yoiw==,type:str]
-basegbot-runner-token: ENC[AES256_GCM,data:2ZnyRdou8U7SPYgntnzoibxOoQltUCnzXIMVYiPQj9Qfa3vaT6SY6w==,iv:RS66X1ophQDl1Mph0x0yzJb/v1x2o7d5+Z1FJRAXsSA=,tag:4wOI4fHkOGE8r1FsAoy+aw==,type:str]
+basegbot-runner-token: ENC[AES256_GCM,data:US3VkT2+S9sKPJ7zPNNBudV/884/cNfmEZVdmWHnL4WWdvUej5aIbQ==,iv:mEjU7DF4NCX7WwLP4+CxlV3aKZOkL7t6wyM4Mz7sPrg=,tag:JrMiiQ2TT3OET4iyO6pUog==,type:str]
 searxng-secret: ENC[AES256_GCM,data:SSvspQVRp79zJq0hzaqzuJIWFtVUoaqHGH9PXUViiXb9UKJM34t82o2J5K69RcOSBL7HadqmxcT4Eh8e8ZUJnquD7rrPdWb2Ih4zS7MmG94=,iv:wrQNNU7CjzfePNe1tWEXmN30vC0jTp+PtgfI3/XH22g=,tag:QAt/QL846hLLIMLQZUM3mQ==,type:str]
 sops:
     kms: []
@@ -27,8 +27,8 @@ sops:
             YWNQcURKMSs2U0pOa3E0cTdCZ3RnalkKGayA7DBUQS+kn+6OYVBc6oTunF0qeZdt
             5b9DLHgh0HRWFm09XGSOog8K315d93Wzblw1My1/dXeEQX/ryinqUQ==
             -----END AGE ENCRYPTED FILE-----
-    lastmodified: "2023-10-19T07:27:05Z"
+    lastmodified: "2023-10-20T05:26:01Z"
-    mac: ENC[AES256_GCM,data:qQc53IWVlTEo3jBIQYKLN/Abivr88DflyB27oITEX3THxjvTSxWGBg9uIBmtYaMwiBxVDTNvwo4yTpvXWOcyaDpxAG01KI0pwoICp4+x+JSmoOZVp0QdEWr8zqUUVJQnNwWPZ9276iLhkTuBPpJ5KBoQPoKzCs2N2yUp1yD2J1o=,iv:Zc1/iIC9QBsWBq65wpWzMYq0R83rFAxwtdvGA6gjjjI=,tag:LBAzl8SiwBD/kzKo+gk3eQ==,type:str]
+    mac: ENC[AES256_GCM,data:biOG5oEJBeVjIWd8libfHdXH3fuJ1oge7QCT2RyxtwKHu4cgNj3ZmBgI204WEygJNDnHAg2X/ndc7uZflILT30xSEy1QYEkHzV9PBoznQaFotz1BsoIbFUMlNcpheL/Ew8vqC4Yu2p7PBX1SL5QSaBdQy3x9G6+6xcCISSS5PjI=,iv:ZONoT/slAIzE91TdAlwfeEjJVdDXb/OeQ8T+HDwS/FY=,tag:J3CdVUnkeMJ3VcwJnXeyYQ==,type:str]
     pgp: []
     unencrypted_suffix: _unencrypted
     version: 3.8.0