From 726edef18b7fbc2486d219f5df559392ca2e2422 Mon Sep 17 00:00:00 2001
From: Alex Mickelson <alexmickelson96@gmail.com>
Date: Tue, 27 Jan 2026 21:21:42 -0700
Subject: [PATCH] adding gitea runner

---
 nix/home-server.nix | 18 ++++++++++++------
 1 file changed, 12 insertions(+), 6 deletions(-)

diff --git a/nix/home-server.nix b/nix/home-server.nix
index 00d6e86..a928ef9 100644
--- a/nix/home-server.nix
+++ b/nix/home-server.nix
@@ -286,14 +286,17 @@
       ];
     };
   };
-
+  
   services.gitea-actions-runner = {
     instances.infrastructure = {
       enable = true;
+
       name = "infrastructure-runner";
-      url = "https://git.alexmickelson.guru";
-      tokenFile = "/data/runner/gitea-infrastructure-token.txt";
-      labels = ["home-server"];
+      url = "https://gitea.example.com";
+      tokenFile = "/data/runner/github-infrastructure-token.txt";
+
+      labels = [ "home-server" ];
+
       hostPackages = with pkgs; [
         docker
         git-secret
@@ -306,7 +309,8 @@
       ];
     };
   };
-  systemd.services.gitea-actions-runner-infrastructure.serviceConfig = {
+
+  systemd.services.gitea-runner-infrastructure.serviceConfig = {
     ReadWritePaths = [
       "/data/cloudflare/"
       "/data/runner/infrastructure"
@@ -316,7 +320,8 @@
 
     PrivateDevices = false;
     DeviceAllow = [ "/dev/zfs rw" ];
-    ProtectProc = false;
+
+    ProtectProc = "default";
     ProtectSystem = false;
     PrivateMounts = false;
     PrivateUsers = false;
@@ -325,6 +330,7 @@
     Restart = "always";
   };
 
+
   
   networking.firewall.enable = false;