aynish/helm
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

woodpecker things

Browse Source
This commit is contained in:
Anish Lakhwara
2022-12-23 16:16:19 +10:00
parent fc1f99b45f
commit 977c316049
2 changed files with 41 additions and 54 deletions
Download Patch File Download Diff File Expand all files Collapse all files
hosts/profiles/woodpecker-server/default.nix
+11 -12
View File
@@ -1,4 +1,4 @@
{ self, ... }:
{ self, pkgs, config, ... }:
{
age.secrets.woodpecker-server-secrets.owner = "woodpecker";
age.secrets.woodpecker-server-secrets.file = "${self}/secrets/woodpecker-server-secrets.age";
@@ -10,6 +10,7 @@
description = "woodpecker user";
home = "/var/lib/woodpecker";
createHome = true;
isNormalUser = true;
};
users.groups.woodpecker = { };
@@ -17,9 +18,11 @@
services.nginx.virtualHosts."ci.sealight.xyz" = {
enableACME = true;
forceSSL = true;
locations."/".proxyPass = "http://localhost:3030/";
locations."/".proxyPass = "http://localhost:38125";
};
networking.firewall.allowedTCPPorts = [ 80 443 22 ];
services.postgresql = {
ensureDatabases = [ "woodpecker" ];
ensureUsers = [{
@@ -33,30 +36,26 @@
systemd.services.woodpecker-server = {
wantedBy = [ "multi-user.target" ];
serviceConfig = {
WorkingDirectory = "/var/lib/woodpecker";
EnvironmentFile = [
/run/agenix/woodpecker-server-secrets
/run/agenix/woodpecker-agent-secret
];
Environment = [
"WOODPECKER_OPEN=true"
"WOODPECKER_OPEN=false"
"WOODPECKER_HOST=https://ci.sealight.xyz"
"WOODPECKER_SERVER_ADDR=:38125"
"WOODPECKER_GITEA=true"
"WOODPECKER_GITEA_URL=https://git.sealight.xyz"
"WOODPECKER_DATABASE_DATASOURCE=postgres:///woodpecker?host=/run/postgresql"
"WOODPECKER_DATABASE_DRIVER=postgres"
"WOODPECKER_SERVER_PORT=:3030"
"WOODPECKER_USER_CREATE=username:aynish,admin:true" # set your admin username
"${config.environment.etc."ssl/certs/ca-certificates.crt".source}:/etc/ssl/certs/ca-certificates.crt"
"${config.environment.etc."ssh/ssh_known_hosts".source}:/etc/ssh/ssh_known_hosts"
"${builtins.toFile "ssh_config" ''
Host git.sealight.xyz
ForwardAgent yes
''}:/etc/ssh/ssh_config"
];
ExecStart = "${pkgs.woodpecker-server}/bin/woodpecker-server";
User = woodpecker;
Group = woodpecker;
User = "woodpecker";
Group = "woodpecker";
};
};