alex/infrastructure
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

adding gitea runner

Browse Source
This commit is contained in:
Alex Mickelson
2026-01-27 21:17:34 -07:00
parent fb0376e0b9
commit cefe7caa1c
7 changed files with 39 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

0
.github/workflows/apply-kubernetes.yml → .gitea/workflows/apply-kubernetes.yml
View File

0
.github/workflows/backup-zfs.yml → .gitea/workflows/backup-zfs.yml
View File

0
.github/workflows/beets-sync.yml → .gitea/workflows/beets-sync.yml
View File

0
.github/workflows/libation-sync.yml → .gitea/workflows/libation-sync.yml
View File

0
.github/workflows/update-home-server.yml → .gitea/workflows/update-home-server.yml
View File

0
.github/workflows/update-playlist.yml → .gitea/workflows/update-playlist.yml
View File

39
nix/home-server.nix
View File

@@ -287,6 +287,45 @@
}; };
}; };
services.gitea-actions-runner = {
instances.infrastructure = {
enable = true;
name = "infrastructure-runner";
url = "https://git.alexmickelson.guru";
tokenFile = "/data/runner/gitea-infrastructure-token.txt";
labels = ["home-server"];
hostPackages = with pkgs; [
docker
git-secret
zfs
sanoid
mbuffer
lzop
kubectl
kubernetes-helm
];
};
};
systemd.services.gitea-actions-runner-infrastructure.serviceConfig = {
ReadWritePaths = [
"/data/cloudflare/"
"/data/runner/infrastructure"
"/data/runner"
"/home/github/infrastructure"
];
PrivateDevices = false;
DeviceAllow = [ "/dev/zfs rw" ];
ProtectProc = false;
ProtectSystem = false;
PrivateMounts = false;
PrivateUsers = false;
ProtectHome = false;
Restart = "always";
};
networking.firewall.enable = false; networking.firewall.enable = false;
# This value determines the NixOS release from which the default # This value determines the NixOS release from which the default