4 changed files with 22 additions and 48 deletions
--- a/hosts/sakura/services/forgejo.nix
+++ b/hosts/sakura/services/forgejo.nix
@ -4,6 +4,7 @@
  config,
  ...
 }: {
+  sops.secrets.forgejo-runner-token = {owner = "forgejo";};
  services.forgejo = {
    enable = true;
    stateDir = "/var/lib/forgejo";
@ -42,4 +43,25 @@
      };
    };
  };
+  services.gitea-actions-runner = {
+    package = pkgs.forgejo-actions-runner;
+    instances.main = {
+      enable = true;
+      name = config.networking.hostName;
+      url = "https://git.flake.sh";
+      token = config.sops.secrets.forgejo-runner-token.path;
+      labels = [
+        "debian-latest:docker://node:18-bullseye"
+        "ubuntu-latest:docker://node:18-bullseye"
+        #"native:host"
+      ];
+      hostPackages = with pkgs; [
+        bash
+        curl
+        coreutils
+        wget
+        gitMinimal
+      ];
+    };
+  };
 }
--- a/hosts/sora/services/traefik.nix
+++ b/hosts/sora/services/traefik.nix
@ -12,16 +12,6 @@
  services.traefik = {
    enable = true;
    dynamicConfigOptions = {
-      tcp = {
-        routers = {
-          gitssh = {
-            rule = "HostSNI(`*`)";
-            entrypoints = ["gitssh"];
-            service = "gitssh";
-            tls.passthrough = true;
-          };
-        };
-      };
      http = {
        middlewares.authelia = {
          forwardauth = {
@ -117,7 +107,6 @@
          grafana.loadBalancer.servers = [{url = "http://100.121.201.47:3100";}];
          hedgedoc.loadBalancer.servers = [{url = "http://100.121.201.47:3300";}];
          vaultwarden.loadBalancer.servers = [{url = "http://100.121.201.47:8222";}];
-          gitssh.loadBalancer.servers = [{url = "tcp://100.121.201.47:2222";}];
        };
      };
    };
@ -136,9 +125,6 @@
        web = {
          address = ":80";
        };
-        gitssh = {
-          address = ":2222";
-        };
      };
      metrics = {
        prometheus = {
--- a/hosts/yuki/services/default.nix
+++ b/hosts/yuki/services/default.nix
@ -8,6 +8,5 @@
    ./dashdot.nix
    ./jellyfin.nix
    ./neko.nix
-    ./forgejo-runners.nix
  ];
 }
--- a/hosts/yuki/services/forgejo-runners.nix
+++ b/hosts/yuki/services/forgejo-runners.nix
@ -1,33 +0,0 @@
-{
-  pkgs,
-  config,
-  ...
-}: {
-  sops.secrets.forgejo-runner-token = {};
-  services.gitea-actions-runner = {
-    package = pkgs.forgejo-actions-runner;
-    instances.main = {
-      settings = {
-        container = {
-          network = "host";
-        };
-      };
-      enable = true;
-      name = config.networking.hostName;
-      url = "https://git.flake.sh";
-      token = "gdeEbeUTifa1nK7EfRgBmvm6XRdQE1zZzAatBRSC";
-      labels = [
-        "debian-latest:docker://node:18-bullseye"
-        "ubuntu-latest:docker://node:18-bullseye"
-        #"native:host"
-      ];
-      hostPackages = with pkgs; [
-        bash
-        curl
-        coreutils
-        wget
-        gitMinimal
-      ];
-    };
-  };
-}