31 lines
1.6 KiB
YAML
31 lines
1.6 KiB
YAML
name: deploy systems
|
|
|
|
on:
|
|
push:
|
|
paths:
|
|
- "**.lock"
|
|
jobs:
|
|
deploy:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v3
|
|
- name: install nix action
|
|
uses: https://github.com/DeterminateSystems/nix-installer-action@v5
|
|
with:
|
|
github-token: ${{ secrets.GH_TOKEN }}
|
|
extra-conf: |
|
|
builders-use-substitutes = true
|
|
substituters = https://cache.flake.sh/kyasshu https://hyprland.cachix.org https://cache.nixos.org https://nix-gaming.cachix.org https://anyrun.cachix.org https://viperml.cachix.org https://nix-community.cachix.org https://cache.nixos.org/
|
|
trusted-public-keys = cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY= kyasshu:g1heIgCgG7M4San6nRsz/omcVQ1GTc7+zKKm3L9Co7o= hyprland.cachix.org-1:a7pgxzMz7+chwVL3/pzj6jIBMioiJM7ypFP8PwtkuGc= cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY= nix-gaming.cachix.org-1:nbjlureqMbRAxR1gJ/f3hxemL9svXaZF/Ees8vCUUs4= anyrun.cachix.org-1:pqBobmOjI7nKlsUMV25u9QHa9btJK65/C8vnO3p346s= viperml.cachix.org-1:qZhKBMTfmcLL+OG6fj/hzsMEedgKvZVFRRAhq7j8Vh8= nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs=
|
|
- name: write private key
|
|
run: |
|
|
mkdir -p .ssh && cd .ssh
|
|
echo "$SSH_KEY" > forgejo
|
|
chmod 400 forgejo
|
|
shell: bash
|
|
env:
|
|
SSH_KEY: ${{secrets.SSH_DEPLOY_KEY}}
|
|
- name: deploy
|
|
run: |
|
|
cd .ssh
|
|
nix run github:serokell/deploy-rs -- --ssh-opts="-i forgejo -o StrictHostKeyChecking=no" --skip-checks --targets .#arashi .#kariru .#sakura .#sora .#yuki .#haru .#kaze
|