Kabbone/nixos-config
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

hosts: dmz: add gitea-runner in microvm

Browse Source
This commit is contained in:
Kabbone 2023-10-16 17:05:17 +02:00
parent 82bfe68ae4
commit eaf2cf1973
Signed by: Kabbone
SSH Key Fingerprint: SHA256:A5zPB5I6u5V78V51c362BBdCwhDhfDUVbt7NfKdjWBY
4 changed files with 25 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
hosts/default.nix
View File

@ -137,14 +137,13 @@ in
dmz = lib.nixosSystem { # Desktop profile dmz = lib.nixosSystem { # Desktop profile
inherit system; inherit system;
specialArgs = { inherit inputs usersdmz location nixos-hardware nur agenix; }; specialArgs = { inherit inputs user location nixos-hardware nur agenix; };
user = userdmz;
modules = [ modules = [
agenix.nixosModules.default agenix.nixosModules.default
nur.nixosModules.nur nur.nixosModules.nur
microvm.nixosModules.host;
./dmz ./dmz
./configuration_server.nix ./configuration_server.nix
nixos-hardware.nixosModules.common-cpu-amd
nixos-hardware.nixosModules.common-pc-ssd nixos-hardware.nixosModules.common-pc-ssd
home-manager.nixosModules.home-manager { home-manager.nixosModules.home-manager {

4
hosts/dmz/hardware-configuration.nix
View File

@ -81,8 +81,8 @@
enable = true; enable = true;
networks = { networks = {
"10-lan" = { "10-lan" = {
matchConfig.Name = "enp34s0"; matchConfig.Name = "enp6s18";
ntp = [ "192.168.2.1" ]; ntp = [ "192.168.101.1" ];
domains = [ "home.opel-online.de" ]; domains = [ "home.opel-online.de" ];
networkConfig = { networkConfig = {
DHCP = "yes"; DHCP = "yes";

22
modules/services/dmz/gitea_runner.nix
View File

@ -9,16 +9,28 @@
}; };
services.gitea-actions-runner.instances = { services.gitea-actions-runner.instances = {
nixrunner-test = { homerunner = {
enable = true; enable = true;
url = "https://git.kabtop.de"; url = "https://git.kabtop.de";
name = "nix_runner_test"; name = "Homerunner";
#tokenFile = "./gitea_token"; tokenFile = config.age.secrets."services/gitea/runner-token".path;
token = "vlUBkX5IbJKTBO3HAGqFM1fEOw2UqXpX87LcdJRY";
labels = [ labels = [
"debian-latest:docker://node:18-bullseye" "debian-latest:docker://node:18-bullseye"
"native:host"
];
hostPackages = with pkgs; [
bash
curl
gitMinimal
coreutils
wget
gnused
]; ];
}; };
}; };
system.stateVersion = "23.11";
age.secrets."services/gitea/runner-token" = {
file = ../../../secrets/services/gitea/runner-token.age;
owner = "gitea-runner";
};
} }

9
modules/services/dmz/microvm.nix
View File

@ -15,9 +15,8 @@ in
config.allowUnfree = true; config.allowUnfree = true;
}; };
imports = [( ./gitea_runner.nix )];
config = { config = {
imports = [( ./gitea_runner.nix )];
networking = { networking = {
hostName = "${name}-runner"; hostName = "${name}-runner";
@ -68,7 +67,7 @@ in
id = "vm-${name}"; id = "vm-${name}";
mac = "04:00:00:00:00:01"; mac = "04:00:00:00:00:01";
macvtap = { macvtap = {
link = "enp34s0"; link = "enp6s18";
mode = "bridge"; mode = "bridge";
}; };
} ]; } ];
@ -78,8 +77,8 @@ in
tag = "ro-store"; tag = "ro-store";
proto = "virtiofs"; proto = "virtiofs";
}]; }];
writableStoreOverlay = "/nix/.rw-store"; #writableStoreOverlay = "/nix/.rw-store";
storeOnDisk = true; #storeOnDisk = true;
}; };
system.stateVersion = "23.05"; system.stateVersion = "23.05";
}; };