From 557aa480ee2f515e4423c59a80561144df91ff07 Mon Sep 17 00:00:00 2001 From: Kabbone Date: Sun, 21 Jan 2024 14:16:39 +0100 Subject: [PATCH] hosts: server: make runner persistent --- modules/services/dmz/microvm.nix | 3 +- modules/services/server/microvm.nix | 1 + secrets/services/gitea/serverrunner-token.age | 39 +++++++++---------- 3 files changed, 22 insertions(+), 21 deletions(-) diff --git a/modules/services/dmz/microvm.nix b/modules/services/dmz/microvm.nix index 259b698..08d42b3 100644 --- a/modules/services/dmz/microvm.nix +++ b/modules/services/dmz/microvm.nix @@ -24,7 +24,7 @@ in networking = { hostName = "${name}"; - firewall = { + firewall = { enable = true; allowedUDPPorts = [ ]; allowedTCPPorts = [ ]; @@ -78,6 +78,7 @@ in directories = [ "/var/lib/nixos" "/var/log" + "/var/lib/gitea-runner" ]; files = [ diff --git a/modules/services/server/microvm.nix b/modules/services/server/microvm.nix index ef43d71..431fe08 100644 --- a/modules/services/server/microvm.nix +++ b/modules/services/server/microvm.nix @@ -81,6 +81,7 @@ in directories = [ "/var/lib/nixos" "/var/log" + "/var/lib/gitea-runner" ]; files = [ diff --git a/secrets/services/gitea/serverrunner-token.age b/secrets/services/gitea/serverrunner-token.age index eff6160..55e345e 100644 --- a/secrets/services/gitea/serverrunner-token.age +++ b/secrets/services/gitea/serverrunner-token.age @@ -1,22 +1,21 @@ age-encryption.org/v1 --> ssh-ed25519 URAPyw voAi15csDCmcVbZP+WErs2/+vL3yVvRZa0SQW7g34B4 -WgGNr9IwKDGWqL+AeoVUc8jTkATmvRQ08s3neohc5fc +-> ssh-ed25519 URAPyw KfgM30iObaBFnzr/qt52XYcaoL7gtG6uV3Y6WYzY8gs +AK/uaa683L/ryApa+007fq4A1qVSVWxDd+LoeBHt0nQ -> ssh-rsa VtjGpQ -j/9J3kb9EdqUuDaNgFjyi6dsoU5W0a8QNRXRvmVgCnxBTWuFsh/Un+Eyo19bXSgu -JIPe/WtlQLwLVNiDhDcDAg7yVo/DSj81pqEQLYJz7X41NwjQMHcmn0W6ylrr1vl6 -7nC85aPrjSRnMsaHNox5ODYH3YdvLbX/yfVLZo1IydqyA+Aq6KOYd3kQ7lDaejhl -7O1ynmEqOdTaXpV3MJTh98YFczFwm5hg+0OOrT5souCN61V/ny0qWgE6Y6KQh3P7 -WHvgwKX9j5qjMHF6j1nzsoJV1KFlaxCHPEyA3tsquB48JxSV7iC35gw+doUayKMa -FuiVbYzCZuRhLZsyTEZiEIDIrAkM2kuQUpJZ8aBxtg70uGMPwjZ/xopHifNfrtFF -xkd735W1shrYB4+HtnaYONkN0Le8XXUhzLuqmy6OQZ5g+9gnauctT3OfOwxMeArd -U3zSSUvtp7j4HjfkZkVzO2VPjirfmv8y3lplHBCDGc2uMOp2POSok50AWXb9Eog5 -0eFyKADDsr5HhLCyqeWYAtKcEmy/C+8iLPJuQmotedhqWc/8SQahqid0R7xyn61g -VBGoWi7OD9DUqDKwoaPEkPFXHn9WROjs0b9aLgm5a/CPPyf8q+DEFOPPhiPMzJ48 -kupKCoM2d8i8CRy7/kNsvQty08fjPWwwerJUC2RX33E --> piv-p256 grR75w Ay9pizV/zj5k0ZAUNB/Sh7yDFWE5bsSg5m1s3T43s+U1 -abA2Gw5V6kOYR+38oqa7GCbsmCvdIrYuOXUk5c1UmEI --> piv-p256 RQguQQ AwHtJavrSXgHos0kMpADmy8ziZUij3cmsFKpx/oE2Qn5 -haQG2+q3uYzgokcjB19hRgTwMn2F4EZJbYvcUqoHtx8 ---- Nuj7KymDL26sjM6Yse24I7b5TemyuyNMtWcdYc0TWAM -M0x3Vݯ׮% -?JFonaMȂA}*!wv @a꼨z \ No newline at end of file +JqNH1SH7MBFwibYKe+VQSuj9ceHyLMo0yWOk4KOLfoMXTBfRFYsqeS+G9p1sTCiJ +I42DQHCustbQ77vElUAYt87v+s+0esK9z0HqSxuYeV2AovQ0FcV7AIrwA+m+eypv +KObVeF+c0PSLaG2HMXSwd3MTXjH8PAwxDB+f+nF2cTYm7oaz5YpNjsMjjcoHxEVz +GOkHWMujX1zxqdp0o0TZC4YhQa4BqF5MXX4IIVtSGMnzShCzubH47bWgLqTxFlnn +bcSHFxldOaPiu/GUV/ygnSGassQJ6naWqu7DlqcdT+NWxARvCRn2Cx786Avi3LHY +vmZFUwdtNkmLNL0jDkmwxT8styRl5ZKJ4IwmAn86O2TcUrqt/FFJ7ph8U0N0UjOe +sD3YNLLC/KeaoiF+z5DJGmbI8YZdx/sInoDlkxWRcHSkqSBmorMTO9bLrsmMkwwa +1dWhb/SUn2OAEv2juLhxZmUR7SrJBJCdLgkBtn3zVXbQvBkGPfzuurUhJP+VpbN6 +uTrBUG9Irki4Ns7q7OcrBc0aMpZEb+J8P1fXhXppw7LdL8b+4M2LrjIA4JqxY0Wf +gI8NZnGdYxb9pcJuL4SXdHZyLyeMG1bC1bMeG5ihd7a9PasclO5LjIVF2OUWaE8s +6TYh2bF4OE7c5rgvGbKrqLR5T3J29BOxPE5W4mExhes +-> piv-p256 grR75w AxpHUU6Ng4C05fdWcUyEZXn3s5SH0PaAyNi9LNyO6X/l +NWfALN4H5Txhi20Xa8ntZPbbbrW3aRegNObZB5pt+0I +-> piv-p256 RQguQQ Au3A174gvw9p88Vt5KbrFs9AZM1YP/7hL1z+7dqmT0TE +X/14RhuJnGihZ9YIpyfz8wjT6Ww88Z4B65Ju1jbM6rs +--- KL1itlvz/yBCLl2CXz3bDu5fSQbT/3XxP2f9hufzSLA + n\!K=WŷY,&f %o YPYs_sCb,OnlW?1S V4Jz \ No newline at end of file