nolan/nixos
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Configure action runner with needed permissions to deploy static sites.

Browse source
This commit is contained in:
Nolan Darilek 2025-02-19 11:26:34 -06:00
parent a5f06924da
commit b11ee499f3
1 changed files with 25 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

27
hosts/hub/apps/dev.nix
View file

@ -1,4 +1,9 @@
{ pkgs, config, ... }: {
pkgs,
config,
utils,
...
}:
let let
name = "dev"; name = "dev";
@ -43,14 +48,32 @@ in
"ubuntu-latest:docker://ghcr.io/catthehacker/ubuntu:act-22.04" "ubuntu-latest:docker://ghcr.io/catthehacker/ubuntu:act-22.04"
"native:host" "native:host"
]; ];
settings = {
container = {
network = "bridge";
};
};
hostPackages = with pkgs; [
bash
coreutils
curl
gawk
gitMinimal
gnused
nodejs
rsync
wget
];
tokenFile = config.age.secrets."${name}_runner_linux".path; tokenFile = config.age.secrets."${name}_runner_linux".path;
}; };
}; };
}; };
systemd.services."gitea-runner-${utils.escapeSystemdPath "${name}-linux"}".serviceConfig.ReadWritePaths = "/var/www";
environment.systemPackages = with pkgs; [ unstable.forgejo-runner ]; environment.systemPackages = with pkgs; [ unstable.forgejo-runner ];
networking.firewall.trustedInterfaces = [ "br-+" ]; networking.firewall.trustedInterfaces = [ "podman0" ];
containers."${name}" = { containers."${name}" = {
autoStart = true; autoStart = true;